ptchown in the glibc package before 2.19-18+deb8u4 on Debian jessie; the elibc package before 2.15-0ubuntu10.14 on Ubuntu 12.04 LTS and before 2.19-0ubuntu6.8 on Ubuntu 14.04 LTS; and the glibc package before 2.21-0ubuntu4.2 on Ubuntu 15.10 and before 2.23-0ubuntu1 on Ubuntu 16.04 LTS and 16.10 lacks a namespace check associated with file-descriptor passing, which allows local users to capture keystrokes and spoof data, and possibly gain privileges, via pts read and write operations, related to debian/sysdeps/linux.mk. NOTE: this is not considered a vulnerability in the upstream GNU C Library because the upstream documentation has a clear security recommendation against the --enable-ptchown option.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "multiarch-support": "2.19-0ubuntu6.8", "libc6-dev": "2.19-0ubuntu6.8", "libc6-udeb-dbgsym": "2.19-0ubuntu6.8", "libnss-dns-udeb-dbgsym": "2.19-0ubuntu6.8", "libc6-ppc64": "2.19-0ubuntu6.8", "libc6-dev-i386": "2.19-0ubuntu6.8", "libnss-dns-udeb": "2.19-0ubuntu6.8", "libc6-amd64-dbgsym": "2.19-0ubuntu6.8", "libc6-dev-amd64": "2.19-0ubuntu6.8", "libc6-pic": "2.19-0ubuntu6.8", "nscd-dbgsym": "2.19-0ubuntu6.8", "nscd": "2.19-0ubuntu6.8", "glibc-doc": "2.19-0ubuntu6.8", "libc6-ppc64-dbgsym": "2.19-0ubuntu6.8", "libc6-armel": "2.19-0ubuntu6.8", "libc6-armel-dbgsym": "2.19-0ubuntu6.8", "libc6": "2.19-0ubuntu6.8", "libc6-dbg": "2.19-0ubuntu6.8", "libc-bin": "2.19-0ubuntu6.8", "libc6-i386": "2.19-0ubuntu6.8", "libc6-udeb": "2.19-0ubuntu6.8", "libc6-dev-x32": "2.19-0ubuntu6.8", "eglibc-source": "2.19-0ubuntu6.8", "libc-bin-dbgsym": "2.19-0ubuntu6.8", "libc-dev-bin": "2.19-0ubuntu6.8", "libc6-amd64": "2.19-0ubuntu6.8", "libc6-x32": "2.19-0ubuntu6.8", "libc6-prof": "2.19-0ubuntu6.8", "libnss-files-udeb": "2.19-0ubuntu6.8", "libc6-dbgsym": "2.19-0ubuntu6.8", "libnss-files-udeb-dbgsym": "2.19-0ubuntu6.8", "libc6-dev-armel": "2.19-0ubuntu6.8", "libc6-dev-ppc64": "2.19-0ubuntu6.8", "libc6-i386-dbgsym": "2.19-0ubuntu6.8", "libc-dev-bin-dbgsym": "2.19-0ubuntu6.8", "libc6-x32-dbgsym": "2.19-0ubuntu6.8" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libc6-s390-dbgsym": "2.23-0ubuntu1", "libc6-dev": "2.23-0ubuntu1", "libc6-udeb-dbgsym": "2.23-0ubuntu1", "multiarch-support": "2.23-0ubuntu1", "libnss-dns-udeb-dbgsym": "2.23-0ubuntu1", "libc6-ppc64": "2.23-0ubuntu1", "libc6-dev-s390": "2.23-0ubuntu1", "libc6-dev-i386": "2.23-0ubuntu1", "libnss-dns-udeb": "2.23-0ubuntu1", "libc6-amd64-dbgsym": "2.23-0ubuntu1", "locales-all": "2.23-0ubuntu1", "glibc-source": "2.23-0ubuntu1", "libc6-dev-amd64": "2.23-0ubuntu1", "libc6-pic": "2.23-0ubuntu1", "nscd-dbgsym": "2.23-0ubuntu1", "nscd": "2.23-0ubuntu1", "glibc-doc": "2.23-0ubuntu1", "libc6-ppc64-dbgsym": "2.23-0ubuntu1", "libc6-armel": "2.23-0ubuntu1", "libc6-dbg": "2.23-0ubuntu1", "libc6": "2.23-0ubuntu1", "libc6-armel-dbgsym": "2.23-0ubuntu1", "libc6-dev-x32": "2.23-0ubuntu1", "libc6-i386": "2.23-0ubuntu1", "libc6-udeb": "2.23-0ubuntu1", "libc-bin": "2.23-0ubuntu1", "libc-bin-dbgsym": "2.23-0ubuntu1", "libc-dev-bin": "2.23-0ubuntu1", "libc6-amd64": "2.23-0ubuntu1", "libc6-x32": "2.23-0ubuntu1", "libnss-files-udeb": "2.23-0ubuntu1", "libnss-files-udeb-dbgsym": "2.23-0ubuntu1", "libc6-dbgsym": "2.23-0ubuntu1", "libc6-s390": "2.23-0ubuntu1", "libc6-dev-armel": "2.23-0ubuntu1", "libc6-dev-ppc64": "2.23-0ubuntu1", "libc6-i386-dbgsym": "2.23-0ubuntu1", "locales": "2.23-0ubuntu1", "libc-dev-bin-dbgsym": "2.23-0ubuntu1", "libc6-x32-dbgsym": "2.23-0ubuntu1" } ] }