CVE-2018-13405 in Android
要約 (英語)
The inode_init_owner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
予約する
2018年07月06日
公開
2018年07月06日
ステータス
確認済み
エントリ
VulDB provides additional information and datapoints for this CVE:
| 識別子 | 脆弱性 | CWE | 悪用可 | 対策 | CVE |
|---|---|---|---|---|---|
| 130428 | Google Android File System 特権昇格 | 269 | 概念実証 | 公式な修正 | CVE-2018-13405 |
| 120483 | Linux Kernel inode.c inode_init_owner 特権昇格 | 264 | 概念実証 | 公式な修正 | CVE-2018-13405 |