vulnerability
Ubuntu: (Multiple Advisories) (CVE-2016-2854): Linux kernel vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | May 2, 2016 | Mar 23, 2022 | Mar 27, 2026 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
May 2, 2016
Added
Mar 23, 2022
Modified
Mar 27, 2026
Description
The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by leveraging a group-writable setgid directory.
Solutions
ubuntu-upgrade-linux-image-4-4-0-1102-awsubuntu-upgrade-linux-image-4-4-0-1103-kvmubuntu-upgrade-linux-image-4-4-0-1138-awsubuntu-upgrade-linux-image-4-4-0-222-genericubuntu-upgrade-linux-image-4-4-0-222-lowlatencyubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-lts-xenial
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.