Launchpad.net

CVE 2016-10044

The aio_mount function in fs/aio.c in the Linux kernel before 4.7.7 does not properly restrict execute access, which makes it easier for local users to bypass intended SELinux W^X policy restrictions, and consequently gain privileges, via an io_setup system call.

Related bugs and status

CVE-2016-10044 (Candidate) is related to these bugs:

Bug #1700972: Please only recommend or suggest initramfs-tools | linux-initramfs-tool for kernels able to boot without initramfs

		In	Importance	Status
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux-azure (Ubuntu)	Low	Fix Committed
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux-azure (Ubuntu Xenial)	Low	Fix Released
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux-aws (Ubuntu)	Low	Fix Released
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux-aws (Ubuntu Xenial)	Low	Fix Released
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux-gke (Ubuntu)	Low	Fix Committed
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux-gke (Ubuntu Xenial)	Low	Fix Released
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux (Ubuntu)	Low	Fix Released
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux (Ubuntu Xenial)	Low	Fix Released
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux (Ubuntu Artful)	Low	Fix Released
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux (Ubuntu Trusty)	Low	Fix Released
1700972	Please only recommend or suggest initramfs-tools \| linux-initramfs-tool for kernels able to boot without initramfs	linux (Ubuntu Zesty)	Low	Fix Released

Bug #1703397: linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker

		In	Importance	Status
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	linux-lts-trusty (Ubuntu)	Undecided	Invalid
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Invalid
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Invalid
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow upload-to-ppa	Medium	Invalid
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released
1703397	linux-lts-trusty: 3.13.0-125.174~precise1 -proposed tracker	linux-lts-trusty (Ubuntu Precise)	Undecided	Won't Fix

Bug #1712345: sort ABI files with C.UTF-8 locale

		In	Importance	Status
1712345	sort ABI files with C.UTF-8 locale	linux (Ubuntu)	Undecided	Fix Released
1712345	sort ABI files with C.UTF-8 locale	linux (Ubuntu Artful)	Undecided	Fix Released
1712345	sort ABI files with C.UTF-8 locale	linux (Ubuntu Precise)	Undecided	Won't Fix
1712345	sort ABI files with C.UTF-8 locale	linux (Ubuntu Trusty)	Undecided	Fix Released
1712345	sort ABI files with C.UTF-8 locale	linux (Ubuntu Vivid)	Undecided	Won't Fix
1712345	sort ABI files with C.UTF-8 locale	linux (Ubuntu Xenial)	Undecided	Fix Released
1712345	sort ABI files with C.UTF-8 locale	linux (Ubuntu Zesty)	Undecided	Fix Released

Bug #1713456: linux: 3.13.0-130.179 -proposed tracker

		In	Importance	Status
1713456	linux: 3.13.0-130.179 -proposed tracker	linux (Ubuntu)	Undecided	Invalid
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Confirmed
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	New
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	New
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Confirmed
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	In Progress
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow upload-to-ppa	Medium	Invalid
1713456	linux: 3.13.0-130.179 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Confirmed
1713456	linux: 3.13.0-130.179 -proposed tracker	linux (Ubuntu Trusty)	Undecided	Fix Released

Bug #1715439: linux: 3.13.0-131.180 -proposed tracker

		In	Importance	Status
1715439	linux: 3.13.0-131.180 -proposed tracker	linux (Ubuntu)	Undecided	Invalid
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	In Progress
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	New
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	New
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow upload-to-ppa	Medium	Invalid
1715439	linux: 3.13.0-131.180 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released
1715439	linux: 3.13.0-131.180 -proposed tracker	linux (Ubuntu Trusty)	Undecided	Fix Released

Bug #1716634: linux: 3.13.0-132.181 -proposed tracker

		In	Importance	Status
1716634	linux: 3.13.0-132.181 -proposed tracker	linux (Ubuntu)	Undecided	Invalid
1716634	linux: 3.13.0-132.181 -proposed tracker	linux (Ubuntu Trusty)	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow upload-to-ppa	Medium	Invalid
1716634	linux: 3.13.0-132.181 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2016-10044

Related bugs and status

Related bugs

References