Discovered yesteryear Venustech ADLab (Active-Defense Lab) researchers, the Linux essence vulnerability (CVE-2017-15265) is due to a use-after-free retention fault inwards the Advanced Linux Sound Architecture (ALSA) sequencer interface of the affected application.
The Advanced Linux Sound Architecture (ALSA) provides well as well as MIDI functionality to the Linux operating system, as well as also bundles a userspace driven library for application developers, enabling straight (kernel) interaction amongst well devices through ALSA libraries.
Successful exploitation of this vulnerability requires an attacker—with local access on the targeted system—to execute a maliciously crafted application on a targeted system, which allows the assaulter to lift his privilege to root on the targeted system, a Cisco advisory warned.
The vulnerability affects major distributions of the Linux operating arrangement including RedHat, Debian, Ubuntu, as well as Suse, as well as is triggered yesteryear a skid inwards snd_seq_create_port().
This "snd_seq_create_port() creates a port object as well as returns its pointer, but it doesn't produce got the refcount, so it tin live on deleted directly yesteryear unopen to other thread," the researchers wrote inwards an advisory published Wednesday.
"Meanwhile, snd_seq_ioctl_create_port() all the same calls the role snd_seq_system_client_ev_port_start() amongst the created port object that is beingness deleted, as well as this triggers use-after-free."The vulnerability has been patched inwards Linux essence version 4.13.4-2, which was fixed only yesteryear taking the refcount properly at "snd_seq_create_port()" as well as letting the caller unref the object afterwards use.
Administrators are advised to apply the appropriate updates on their Linux distributions every bit shortly every bit they have them from their respective distro. They're also recommended to allow solely trusted users to access local systems as well as e'er monitor affected systems.
This flaw is yet unopen to other privilege escalation vulnerability lately uncovered inwards the Linux kernel.
Last month, a high-risk 2-year-old potential local privilege escalation flaw was patched inwards the Linux essence that affected all major Linux distributions, including Red Hat, Debian, as well as CentOS.
In February, unopen to other privilege-escalation vulnerability that dates dorsum to 2011 disclosed as well as patched inwards the Linux essence which also affected major Linux distro, including Redhat, Debian, OpenSUSE, as well as Ubuntu.
Share This :
comment 0 Comments
more_vert