U-068:Linux Kernel SG_IO ioctl Bug Lets Local Users Gain Elevated Privileges
Privacy and Legal Notice
Discussion:
A vulnerability was reported in the Linux Kernel. A local user can obtain elevated privileges on the target system. On a virtualized system, a local privileged user on the guest operating system can execute the SG_IO ioctl on a partition or LVM volume to read or write data on the underlying disk. The local user can access host operating system data or data of other guests on the system.
TECHNICAL BULLETIN
December 23, 2011 8:45 AM ET
PROBLEM: | Linux Kernel SG_IO ioctl Bug Lets Local Users Gain Elevated Privileges |
PLATFORM: | Red Hat Enterprise Linux Desktop (v. 6) |
ABSTRACT: | A local privileged user on the guest operating system can obtain elevated privileges on the target system. |
IMPACT ASSESSMENT: | Medium |
A vulnerability was reported in the Linux Kernel. A local user can obtain elevated privileges on the target system. On a virtualized system, a local privileged user on the guest operating system can execute the SG_IO ioctl on a partition or LVM volume to read or write data on the underlying disk. The local user can access host operating system data or data of other guests on the system.
Impact:
A local privileged user on the guest operating system can obtain elevated privileges on the target system.
Solution:
Linux Kernel source code fix[2]
Red Hat kernel security and bug fix update[3]
References
- ^ Privacy and Legal Notice (www.energy.gov)
- ^ Linux Kernel source code fix (git.kernel.org)
- ^ Red Hat kernel security and bug fix update (access.redhat.com)
Authors: JC3-CIRC