redhat enterprise-mrg CVE-2015-1350 in Red Hat and Linux Products
Published on May 2, 2016

product logo product logo
The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cause a denial of service (capability stripping) via a failed invocation of a system call, as demonstrated by using chown to remove a capability from the ping or Wireshark dumpcap program.

NVD


Products Associated with CVE-2015-1350

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2015-1350 are published in these products:

Red Hat Enterprise Mrg
 
Linux Kernel
 
Red Hat Enterprise Linux (RHEL)
 

Exploit Probability

EPSS
0.07%
Percentile
20.17%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.