SB2019072209 - Privilege escalation in Linux Kernel ptrace_link
Published: July 22, 2019 Updated: June 21, 2024
Security Bulletin ID
SB2019072209
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2019-13272)
The vulnerability allows a local user to perform unauthorized actions on a targeted system.
The vulnerability exists when recording the credentials of a process that will create a ptrace relationship in the "ptrace_link" function in the "kernel/ptrace.c" file. A local authenticated user can create a specially crafted application and escalate privileges on the system.
Remediation
Install update from vendor's website.
References
- https://github.com/torvalds/linux/commit/6994eefb0053799d2e07cd140df6c2ea106c41ee
- https://cdn.kernel.org/pub/linux/kernel/v5.x/
- https://github.com/bcoles/kernel-exploits/tree/master/CVE-2019-13272
- https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/ptrace_trace...