CVE-2014-1425

EUVD-2014-1501
cmanager 0.32 does not properly enforce nesting when modifying cgroup properties, which allows local users to set cgroup values for all cgroups via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
Affected Products (NVD)
VendorProductVersion
linuxcontainerscgmanager
0.32
canonicalubuntu_linux
14.04
canonicalubuntu_linux
14.10
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cgmanager
lucid
dne
precise
dne
trusty
Fixed 0.24-0ubuntu7.1
released
utopic
Fixed 0.32-4ubuntu1.1
released
Common Weakness Enumeration
References
http://www.ubuntu.com/usn/USN-2451-1
http://www.ubuntu.com/usn/USN-2451-1