Early Access — Mondoo Vulnerability Intelligence is currently in preview.
The Linux kernel before 4.8 allows local users to bypass ASLR on setuid programs (such as /bin/su) because install_exec_creds() is called too late in load_elf_binary() in fs/binfmt_elf.c, and thus the ptrace_may_access() check has a race condition when reading /proc/pid/stat.
4.13.0-16.195.13.0-19.195.3.0-18.195.3.0-24.265.4.0-9.123.11.0-12.193.12.0-1.33.12.0-2.53.12.0-2.73.12.0-3.83.12.0-3.93.12.0-4.103.12.0-4.123.12.0-5.133.12.0-7.15+170 more4.2.0-16.194.2.0-17.214.2.0-19.234.3.0-1.104.3.0-2.114.3.0-5.164.3.0-6.174.3.0-7.184.4.0-10.254.4.0-101.124+81 more4.4.0-150.1766.8.0-31.316.5.0-9.96.11.0-8.86.8.0-1008.86.5.0-1008.84.4.0-1002.24.4.0-1003.34.4.0-1005.54.4.0-1006.64.4.0-1009.94.4.0-1010.104.4.0-1011.114.4.0-1012.124.4.0-1014.144.4.0-1016.16+19 more4.4.0-1054.585.13.0-1005.65.3.0-1003.35.3.0-1008.95.3.0-1009.105.3.0-1010.115.4.0-1005.56.11.0-1004.44.15.0-1001.14.4.0-1001.104.4.0-1003.124.4.0-1004.134.4.0-1007.164.4.0-1009.184.4.0-1011.204.4.0-1012.214.4.0-1013.224.4.0-1016.254.4.0-1017.26+40 more4.4.0-1084.945.15.0-1014.18~20.04.15.15.0-1015.19~20.04.15.4.0-1018.18~18.04.15.4.0-1020.20~18.04.26.8.0-1009.9~22.04.25.15.0-1042.47+fips15.15.0-1051.56+fips15.4.0-1021.21+fips25.4.0-1021.21+fips25.15.0-1051.56+fips15.15.0-1042.47+fips14.15.0-2000.44.15.0-2000.45.15.0-1051.56+fips15.15.0-1052.57+fips14.15.0-1030.31~16.04.14.15.0-1031.33~16.04.15.3.0-1003.35.3.0-1008.95.3.0-1009.105.4.0-1006.66.11.0-1004.44.11.0-1009.94.11.0-1011.114.11.0-1013.134.11.0-1014.144.11.0-1015.156.5.0-1007.76.8.0-1007.74.15.0-1023.24~14.04.14.15.0-1002.25.13.0-1006.74.15.0-1082.925.15.0-1007.8~20.04.15.4.0-1020.20~18.04.15.4.0-1022.22~18.04.16.11.0-1008.8~24.04.16.8.0-1008.8~22.04.15.4.0-1063.66+cvm2.25.4.0-1063.66+cvm3.25.4.0-1064.67+cvm1.15.4.0-1065.68+cvm2.15.4.0-1067.70+cvm1.15.4.0-1068.71+cvm1.15.4.0-1069.72+cvm1.15.4.0-1070.73+cvm1.15.4.0-1072.75+cvm1.15.4.0-1073.76+cvm1.1+16 more5.15.0-1019.24.15.15.0-1019.24~20.04.1.15.15.0-1020.25~20.04.1.15.15.0-1021.26~20.04.1.15.15.0-1029.36~20.04.1.15.15.0-1030.37~20.04.1.15.15.0-1031.38~20.04.1.15.15.0-1033.40~20.04.1.15.15.0-1034.41~20.04.1.25.15.0-1035.42~20.04.1.15.15.0-1036.43~20.04.1.1+40 more5.15.0-1053.61+fips15.15.0-1058.66+fips15.15.0-1053.61+fips14.15.0-1002.25.4.0-1022.22+fips15.4.0-1022.22+fips14.15.0-1002.26.8.0-1013.145.4.0-1007.105.4.0-1011.145.15.0-1011.134.15.0-1011.124.4.0-1003.34.4.0-1005.54.4.0-1006.64.4.0-1008.104.4.0-1010.135.4.0-1007.85.15.0-73.80+fips15.15.0-92.102+fips15.4.0-1026.304.4.0-1003.34.4.0-1005.54.4.0-1006.64.4.0-1008.104.4.0-1010.134.4.0-1011.144.15.0-1027.325.15.0-73.80+fips16.11.0-1003.36.8.0-1007.75.3.0-1004.45.3.0-1009.105.3.0-1011.125.4.0-1005.54.15.0-1001.16.5.0-1007.74.10.0-1004.45.13.0-1005.64.15.0-1071.815.15.0-1006.9~20.04.15.4.0-1019.19~18.04.25.4.0-1021.21~18.04.16.11.0-1006.6~24.04.26.8.0-1010.11~22.04.14.18.0-1004.5~18.04.15.4.0-1021.21+fips15.15.0-1048.56+fips15.15.0-1048.56+fips15.4.0-1021.21+fips14.15.0-1001.14.15.0-2013.146.8.0-1003.55.15.0-1002.25.4.0-1033.355.4.0-1035.375.4.0-1036.385.4.0-1037.395.4.0-1039.415.4.0-1041.435.4.0-1042.445.4.0-1043.455.4.0-1044.465.4.0-1046.48+41 more5.4.0-1008.95.15.0-1001.26.8.0-1001.35.15.0-1003.5~20.04.24.8.0-36.36~16.04.14.8.0-39.42~16.04.14.18.0-13.14~18.04.15.15.0-33.34~20.04.15.4.0-37.41~18.04.16.11.0-17.17~24.04.26.11.0-19.19~24.04.16.8.0-38.38~22.04.15.0.0-15.16~18.04.15.15.0-1002.26.5.0-1009.95.4.0-1003.45.4.0-1004.55.15.0-1033.36~20.04.15.15.0-1034.37~20.04.15.4.0-1010.11~18.04.25.15.0-1073.755.15.0-1021.265.15.0-1004.65.15.0-1003.5~20.04.15.4.0-1001.35.13.0-1004.44.4.0-1004.94.4.0-1007.124.4.0-1008.134.4.0-1009.144.4.0-1010.154.4.0-1012.174.4.0-1013.184.4.0-1015.204.4.0-1017.224.4.0-1019.24+19 more4.4.0-1047.534.15.0-1002.25.3.0-1003.35.3.0-1008.95.3.0-1009.105.4.0-1004.46.8.0-31.31.15.15.0-22.226.5.0-9.9.15.15.0-33.34~20.04.16.11.0-1009.10~24.04.16.11.0-1011.12~24.04.16.8.0-38.38.1~22.04.24.4.0-101.124~14.04.14.4.0-103.126~14.04.14.4.0-104.127~14.04.14.4.0-108.131~14.04.14.4.0-109.132~14.04.14.4.0-111.134~14.04.14.4.0-112.135~14.04.14.4.0-116.140~14.04.14.4.0-119.143~14.04.14.4.0-121.145~14.04.1+59 more4.4.0-164.192~14.04.16.8.0-1007.75.15.0-1005.56.5.0-1004.46.8.0-1008.8~22.04.16.8.0-1009.9.15.15.0-1009.95.15.0-1010.105.15.0-1012.125.15.0-1013.136.8.0-1003.35.15.0-1009.9~20.04.15.15.0-1001.14.15.0-1002.36.11.0-1007.76.14.0-1004.46.8.0-1003.36.8.0-1005.56.11.0-1006.64.15.0-1007.9~16.04.14.15.0-1008.10~16.04.16.5.0-1010.105.3.0-1002.25.3.0-1007.85.3.0-1008.95.4.0-1005.55.13.0-1008.104.15.0-1007.94.15.0-1008.105.15.0-1007.9~20.04.15.4.0-1019.19~18.04.15.4.0-1021.21~18.04.16.8.0-1006.6~22.04.36.5.0-1005.76.11.0-1004.45.13.0-1008.96.8.0-1004.45.4.0-1007.75.4.0-1013.13~18.04.16.8.0-2019.206.7.0-2001.15.3.0-1007.85.3.0-1014.165.3.0-1015.175.3.0-1017.195.4.0-1004.45.4.0-1006.64.2.0-1013.194.2.0-1014.214.3.0-1006.64.4.0-1003.44.4.0-1004.54.4.0-1009.104.4.0-1010.124.4.0-1010.134.4.0-1012.164.4.0-1016.22+53 more4.4.0-1110.1184.13.0-1005.55.15.0-1032.356.8.0-1008.196.8.1-1015.166.11.0-1001.15.15.0-1006.66.11.0-1001.15.13.0-1004.45.13.0-1006.6+22.04.15.13.0-1007.7+22.04.15.13.0-1010.11+22.04.15.15.0-1004.45.15.0-1005.55.15.0-1006.65.15.0-1007.75.15.0-1008.85.15.0-1011.12+13 more6.11.0-8.8.15.4.0-24.285.4.0-26.305.4.0-27.315.4.0-28.325.4.0-30.345.4.0-31.355.4.0-33.375.4.0-34.385.4.0-36.415.4.0-37.42+2 more6.5.0-9.9.16.8.0-31.31.15.15.0-1015.17~20.04.16.8.0-38.38.1~22.04.14.4.0-1012.124.4.0-1013.144.4.0-1013.154.4.0-1015.184.4.0-1019.224.4.0-1020.234.4.0-1022.254.4.0-1024.274.4.0-1026.294.4.0-1030.33+51 more4.4.0-1114.1194.4.0-1077.824.4.0-1078.834.4.0-1079.844.4.0-1081.864.15.0-1053.575.4.0-1020.245.15.0-1022.26Exploitability
AV:LAC:HPR:LUI:NScope
S:UImpact
C:HI:NA:NCVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N