Oval Definition:oval:com.ubuntu.xenial:def:201322070000000
Revision Date:2013-10-09Version:1
Title:CVE-2013-2207 on Ubuntu 16.04 LTS (xenial) - low.
Description:pt_chown in GNU C Library (aka glibc or libc6) before 2.18 does not properly check permissions for tty files, which allows local users to change the permission on the files and obtain access to arbitrary pseudo-terminals by leveraging a FUSE file system. Martin Carpenter discovered that pt_chown in the GNU C Library did not properly check permissions for tty files. A local attacker could use this to gain administrative privileges or expose sensitive information.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-2207
Platform(s):Ubuntu 16.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 16.04 LTS (xenial) is installed.
  • AND glibc package in xenial, is related to the CVE in some way and has been fixed (note: '2.23-0ubuntu1').
  • BACK