VDB
CVE-2016-2854
CVE-2016-2854
PUBLISHED
The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by leveraging a group-writable setgid directory.
EPSS 0.35% · 57.7th percentile
Risk Scores
EPSS Score
0.35%
57.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:Pro:18.04:LTS | linux-azure-5.4 | 5.4.0-1077.80~18.04.1, 5.4.0-1140.147~18.04.1, 5.4.0-1142.149~18.04.1 |
| Ubuntu:Pro:Realtime:24.04:LTS | linux-raspi-realtime | 6.8.0-2015.16, 6.8.0-2024.25, 6.8.0-2038.39 |
| Ubuntu:22.04:LTS | linux-azure-fde-5.19 | 5.19.0-1026.29~22.04.1.1, 0, 5.19.0-1025.28~22.04.1.1 |
| Ubuntu:24.04:LTS | linux-nvidia-tegra | 6.8.0-1004.4, 6.8.0-1009.9, 6.8.0-1016.16 |
| Ubuntu:20.04:LTS | linux-oem-5.14 | 5.14.0-1020.22, 5.14.0-1004.4, 0 |
| Ubuntu:22.04:LTS | linux-azure | 5.15.0-1013.16, 5.15.0-1014.17, 5.15.0-1017.20 |
| Ubuntu:22.04:LTS | linux-azure-fde-6.8 | 0, 6.8.0-1046.53~22.04.1, 6.8.0-1044.51~22.04.1 |
| Ubuntu:24.04:LTS | linux-azure-nvidia-6.14 | 0, 6.14.0-1003.3, 6.14.0-1006.6 |
| Ubuntu:22.04:LTS | linux-azure-5.19 | 5.19.0-1022.23~22.04.1, 5.19.0-1023.24~22.04.1, 5.19.0-1025.28~22.04.1 |
| Ubuntu:25.10 | linux-azure-fde | 6.17.0-1003.3, 0, 6.17.0-1004.4 |
| Ubuntu:24.04:LTS | linux-azure-fde | 6.8.0-1044.51, 0, 6.8.0-1041.48 |
| Ubuntu:Pro:FIPS-updates:24.04:LTS | linux-gcp-fips | 6.8.0-1048.51+fips1, 6.8.0-1044.47+fips1, 6.8.0-1042.45+fips1 |
| Ubuntu:22.04:LTS | linux-nvidia-6.8 | *, *, * |
| Ubuntu:Pro:FIPS-updates:22.04:LTS | linux-fips | 5.15.0-143.153+fips1, 0, 5.15.0-73.80+fips1 |
| Ubuntu:Pro:FIPS:20.04:LTS | linux-azure-fips | 0, 5.4.0-1022.22+fips1 |
| Ubuntu:Pro:FIPS-preview:22.04:LTS | linux-aws-fips | *, 5.15.0-1051.56+fips1, 0 |
| Ubuntu:Pro:20.04:LTS | linux-ibm-5.15 | 5.15.0-1048.51~20.04.1, 5.15.0-1046.49~20.04.1, 5.15.0-1045.48~20.04.1 |
| Ubuntu:18.04:LTS | linux-hwe-edge | *, 0, 5.0.0-15.16~18.04.1 |
| Ubuntu:Pro:FIPS:18.04:LTS | linux-gcp-fips | 4.15.0-1001.1, 0 |
| Ubuntu:25.10 | linux-azure | 6.16.0-1001.1, 6.17.0-1003.3, 6.17.0-1004.4 |
…and 78 more
Exploit Intelligence
- http://www.halfdog.net/Security/2016/AufsPrivilegeEscalationInUserNamespaces/ (vulncheck-nvd)
- http://www.openwall.com/lists/oss-security/2016/02/24/9 (vulncheck-nvd)
- Ubuntu 15.10 AUFS - allow_userns Fuse/Xattr User Namespaces Privilege Escalation Vulnerability (0day-today)
- Ubuntu 15.10 AUFS - allow_userns Fuse/Xattr User Namespaces Privilege Escalation Vulnerability (0day-today)
Timeline
- May 2, 2016 CVE Published
- Mar 29, 2017 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2016-2854 third-party-advisory
- http://www.halfdog.net/Security/2016/AufsPrivilegeEscalationInUserNamespaces/ third-party-advisory
- https://sourceforge.net/p/aufs/mailman/message/34864744/ third-party-advisory
- https://ubuntu.com/security/notices/USN-5343-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2016-2854 third-party-advisory