CVE-2014-7975

 

Published at: - 13-10-2014 12:55

Last modified: - 21-09-2022 08:44

Total changes: - 2

Description

The do_umount function in fs/namespace.c in the Linux kernel through 3.17 does not require the CAP_SYS_ADMIN capability for do_remount_sb calls that change the root filesystem to read-only, which allows local users to cause a denial of service (loss of writability) by making certain unshare system calls, clearing the / MNT_LOCKED flag, and making an MNT_FORCE umount system call.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

 

Verification logic

 

Reference

• [oss-security] 20141008 CVE-2014-7975: 0-day umount denial of service-Mailing List, Third Party Advisory
• [stable] 20141008 [PATCH] fs: Add a missing permission check to do_umount-Broken Link
• https://bugzilla.redhat.com/show_bug.cgi?id=1151108
• http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0ef3a56b1c466629cd0bf482b09c7b0e5a085bb5
• 70314-Third Party Advisory, VDB Entry
• 61145-Broken Link
• USN-2415-1-Third Party Advisory
• USN-2421-1-Third Party Advisory
• USN-2419-1-Third Party Advisory
• USN-2420-1-Third Party Advisory
• USN-2416-1-Third Party Advisory
• USN-2418-1-Third Party Advisory
• USN-2417-1-Third Party Advisory
• 62634-Broken Link
• 62633-Broken Link
• 60174-Broken Link
• 1031180-Third Party Advisory, VDB Entry
• linux-kernel-cve20147975-dos(96994)-Third Party Advisory, VDB Entry
• RHSA-2017:2077-Third Party Advisory
• RHSA-2017:1842-Third Party Advisory

 

Keywords

NVD

 

CVE-2014-7975

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures