Reading Time: 2 minutesDirty COW (CVE-2016-5195) is a privilege escalation vulnerability in the Linux Kernel. The bug has existed since around 2.6.22 (released in 2007) and was fixed on Oct 18, 2016.
“A race condition was found in the way the Linux kernel’s memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system.” (RH)
The impact of this vulnerability is:
- An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system.
- This flaw allows an attacker with a local system account to modify on-disk binaries, bypassing the standard permission mechanisms that would prevent modification without an appropriate permission set
Should be interesting see how this bug will imapct all the virtual appliance from several vendors, based on Linux. And also how will affect old distributions that are maybe no more maintained.
See also: Dirty COW — Critical Linux Kernel Flaw Being Exploited in the Wild
Related Posts
-
Linux Kernel 4.15 contro Meltdown e SpectreLinux Kernel 4.15 è stato rilasciato il 28 gennaio 2018, dopo un lungo ciclo di sviluppo, tanto da arrivare alla RC9, cosa che non succedeva dal 2011. Questa versione è la prima che contiene specifiche ottimizzazioni e soluzioni specifiche per Meltdown e Spectre issues (benché anche…
-
Using Linux Kernel 4.15 to minimize Meltdown and SpectreLinux Kernel 4.15 has been released on 28 Jan 2018 and, thanks to the entire Linux Kernel development team, this release contains the latest code to deal with Meltdown and Spectre issues and minize the related risks. The Kernel is the core code in the operating…
-
Using Linux in a vSphere ConsoleUsing Linux as a guest OS in a VMware vSphere environment it's, of course, well supported and more distributions are officially supported in vSphere 5 making more easy deploy Linux VM or Linux based virtual appliances. For the remote management a good option it's usually…
Virtualization, Cloud and Storage Architect. Tech Field delegate.
VMUG IT Co-Founder and board member. VMware VMTN Moderator and vExpert 2010-20 and vExpert Pro. Dell TechCenter Rockstar 2014-15. Microsoft MVP 2014-16. Veeam Vanguard 2015-19. Nutanix NTC 2014-20.
Several certifications including: VCDX-DCV, VCP-DCV/DT/Cloud, VCAP-DCA/DCD/CIA/CID/DTA/DTD, MCSA, MCSE, MCITP, CCA, NPP.