Oval Definition:	oval:com.ubuntu.precise:def:20131858000
Revision Date: 2013-04-05 Version: 1 Title: CVE-2013-1858 on Ubuntu 12.04 LTS (precise) - high. Description: The clone system-call implementation in the Linux kernel before 3.8.3 does not properly handle a combination of the CLONE_NEWUSER and CLONE_FS flags, which allows local users to gain privileges by calling chroot and leveraging the sharing of the / directory between a parent process and a child process. Family: unix Class: vulnerability Status: Reference(s): CVE-2013-1858 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'linux' package in precise is not affected. OR NOT While related to the CVE in some way, the 'linux-armadaxp' package in precise is not affected. OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR NOT While related to the CVE in some way, the 'linux-lts-quantal' package in precise is not affected. OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR NOT While related to the CVE in some way, the 'linux-ti-omap4' package in precise is not affected.
BACK