Linux-VServer ccaps privilege escalation

linux-vserver-ccaps-privilege-escalation (26285) The risk level is classified as MediumMedium Risk

Description:

Linux-VServer could allow a local attacker to gain elevated privileges. A local attacker logged on as a guest user could use certain context capabilities (ccaps) to perform operations as a guest-root user.


Consequences:

Gain Privileges

Remedy:

Apply the patch for this vulnerability or upgrade to the latest version of Linux-VServer (vs2.0.2-rc18 or later) or (vs2.1.1-rc18 or later), available from the Linux-VServer Web site. See References.

For Debian GNU/Linux:
Refer to DSA-1060-1 for patch, upgrade, or suggested workaround information. See References.

References:

  • Linux-VServer Web site: Linux-VServer Project.
  • Vserver Mailing List, Fri, 28 Apr 2006 04:25:07 +0200 (CEST): [Vserver] [SECURITY] ccaps not limited to root inside a guest.
  • BID-17842: Linux-VServer Local Insecure Guest Context Capabilities Vulnerability
  • CVE-2006-2110: Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x before 2.1.1-rc18 provides certain context capabilities (ccaps) that allow local guest users to perform operations that were only intended to be allowed by the guest-root.
  • DSA-1060: kernel-patch-vserver -- programming error
  • SA19961: Linux-VServer "ccaps" Insecure Capabilities Security Issue
  • VUPEN/ADV-2006-1661: Linux-VServer Insecure Context Capabilities Privilege Escalation Vulnerability

Platforms Affected:

  • Debian Debian Linux 3.1
  • VServer Linux-VServer 0.09.10 - vs2.0-rc2

Reported:

Apr 28, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page