CVE - CVE-2014-7975

CVE-ID
CVE-2014-7975	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The do_umount function in fs/namespace.c in the Linux kernel through 3.17 does not require the CAP_SYS_ADMIN capability for do_remount_sb calls that change the root filesystem to read-only, which allows local users to cause a denial of service (loss of writability) by making certain unshare system calls, clearing the / MNT_LOCKED flag, and making an MNT_FORCE umount system call.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MLIST:[oss-security] 20141008 CVE-2014-7975: 0-day umount denial of service URL:http://www.openwall.com/lists/oss-security/2014/10/08/22 MLIST:[stable] 20141008 [PATCH] fs: Add a missing permission check to do_umount URL:http://thread.gmane.org/gmane.linux.kernel.stable/109312 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1151108 CONFIRM:http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0ef3a56b1c466629cd0bf482b09c7b0e5a085bb5 REDHAT:RHSA-2017:1842 URL:https://access.redhat.com/errata/RHSA-2017:1842 REDHAT:RHSA-2017:2077 URL:https://access.redhat.com/errata/RHSA-2017:2077 UBUNTU:USN-2415-1 URL:http://www.ubuntu.com/usn/USN-2415-1 UBUNTU:USN-2416-1 URL:http://www.ubuntu.com/usn/USN-2416-1 UBUNTU:USN-2419-1 URL:http://www.ubuntu.com/usn/USN-2419-1 UBUNTU:USN-2420-1 URL:http://www.ubuntu.com/usn/USN-2420-1 UBUNTU:USN-2421-1 URL:http://www.ubuntu.com/usn/USN-2421-1 UBUNTU:USN-2417-1 URL:http://www.ubuntu.com/usn/USN-2417-1 UBUNTU:USN-2418-1 URL:http://www.ubuntu.com/usn/USN-2418-1 BID:70314 URL:http://www.securityfocus.com/bid/70314 SECTRACK:1031180 URL:http://www.securitytracker.com/id/1031180 SECUNIA:61145 URL:http://secunia.com/advisories/61145 SECUNIA:60174 URL:http://secunia.com/advisories/60174 SECUNIA:62633 URL:http://secunia.com/advisories/62633 SECUNIA:62634 URL:http://secunia.com/advisories/62634 XF:linux-kernel-cve20147975-dos(96994) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/96994
Assigning CNA
N/A
Date Entry Created
20141008	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20141008)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org