Cloud Foundry Logo
blog single gear
Blog
Security Advisory

CVE-2015-1328 – overlayfs privilege escalation

by: June 17, 2015

CVE-2015-1328 – overlayfs privilege escalation

Severity

High

Vendor

Canonical Ubuntu

Versions Affected

  • Canonical Ubuntu 14.04 LTS with 3.16 kernel

Description

Philip Pettersson discovered a privilege escalation when using overlayfs mounts inside of user namespaces. A local user could exploit this flaw to gain administrative privileges on the system.

Affected Products and Versions

Severity is high unless otherwise noted.

  • Any Cloud Foundry deployment with Ubuntu Trusty BOSH stemcell prior to version 2989

Mitigation

Users of affected versions should apply the following mitigation:

  • The Cloud Foundry project recommends upgrading to BOSH 2989 stemcell or later for all Cloud Foundry deployments.

Credit

Philip Pettersson

References

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

CVE-2019-11290: UAA logs query parameters in tomcat access file
Security Advisory

CVE-2019-11290: UAA logs query parameters in tomcat access file

by Cloud Foundry Foundation Security Team November 21, 2019
CVE-2019-9946: Kubernetes affecting certain network configurations with CNI
Security Advisory

CVE-2019-9946: Kubernetes affecting certain network configurations with CNI

by Cloud Foundry Foundation Security Team April 1, 2019
USN-6485-1: Intel Microcode vulnerability
Security Advisory

USN-6485-1: Intel Microcode vulnerability

by Cloud Foundry Foundation Security Team December 4, 2023
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept