CVE-2015-1328
published 2016-11-28CVE-2015-1328: The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file…
PriorityP179high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
37.68%
98.3th percentile
The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem directory, which allows local users to obtain root access by leveraging a configuration in which overlayfs is permitted in an arbitrary mount namespace.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | <= 15.04 | — |
| debian | linux | — | — |
| linux | linux_kernel | <= 3.19 | — |
| linux | linux_kernel | >= 0 < 3.13.0-55.94 | 3.13.0-55.94 |
| linux | linux_kernel | >= 0 < 3.13.0-55.92 | 3.13.0-55.92 |
| ubuntu | linux | — | — |
Detection & IOCsextracted from sources · hover to see the quote
commandmount overlay /tmp/ns_sploit/o overlayfs lowerdir=/proc/sys/kernel,upperdir=/tmp/ns_sploit/upper↗
commandmount overlay /tmp/ns_sploit/o overlay lowerdir=/sys/kernel/security/apparmor,upperdir=/tmp/ns_sploit/upper,workdir=/tmp/ns_sploit/work↗
- →Detect creation of /tmp/ns_sploit directory tree (ns_sploit, ns_sploit/work, ns_sploit/upper, ns_sploit/o) as a strong indicator of CVE-2015-1328 exploitation attempt ↗
- →Detect writing of /tmp/ofs-lib.so path string into /etc/ld.so.preload — the exploit writes exactly the string '/tmp/ofs-lib.so\n' (16 bytes) to ld.so.preload ↗
- →Monitor for overlayfs/overlay mounts with upperdir=/etc by unprivileged users, which is the second-stage mount used to write into /etc ↗
- →Detect presence of hardcoded Metasploit pre-compiled payload path /tmp/lXqzVpYN or /tmp/haxhax on disk, indicating use of the Metasploit overlayfs_priv_esc module ↗
- →Monitor for on-the-fly compilation of exploit C source dropped to /tmp (e.g. ofs-lib.c) followed immediately by gcc invocation with -fPIC -shared flags from a non-build context ↗
- →Kernel version fingerprinting: flag systems running Ubuntu kernels 3.13.0-24 through 3.13.0-54, 3.16.0-25 through 3.16.0-40, or 3.19.0-18 through 3.19.0-20 as vulnerable to CVE-2015-1328 ↗
- ·The exploit requires overlayfs to be permitted in an arbitrary (unprivileged) mount namespace — this is an Ubuntu-specific kernel configuration not present in all Linux distributions ↗
- ·The workdir= mount option and 'overlay' filesystem type name (vs 'overlayfs') are only required on newer kernels; older kernels use 'overlayfs' without workdir ↗
- ·The Metasploit module defaults to CVE-2015-8660 (DefaultTarget => 1) and uses linux/x86/shell/reverse_tcp payload by default for compatibility due to the /bin/su execution requirement in CVE-2015-1328 ↗
- ·The exploit's post-exploitation cleanup (removing /etc/ld.so.preload and /tmp/ofs-lib.so) is triggered inside the new session via /bin/su execution, which does not work on meterpreter sessions ↗
- ·The WritableDir must not be mounted noexec; the default is /tmp but this will fail if /tmp is mounted with noexec ↗
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.8HIGH
vulncheck7.8HIGH
vendor_debian7.8LOW
vendor_redhat7.8HIGH
vendor_ubuntu7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Linux kernel (Trusty HWE) regression
vendor_ubuntu·2015-06-21·CVSS 7.8
CVE-2015-1328 [HIGH] Linux kernel (Trusty HWE) regression
Title: Linux kernel (Trusty HWE) regression
Summary: The system could be made to crash under certain conditions.
The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's
overlayfs file system. The removal of a directory that only exists on the
lower layer results in a kernel panic.
We apologize for the inconvenience.
Original advisory details:
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
Ubuntu
Linux kernel regression
vendor_ubuntu·2015-06-21·CVSS 7.8
CVE-2015-1328 [HIGH] Linux kernel regression
Title: Linux kernel regression
Summary: The system could be made to crash under certain conditions.
The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's
overlayfs file system. The removal of a directory that only exists on the
lower layer results in a kernel panic.
We apologize for the inconvenience.
Original advisory details:
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
Ubuntu
Linux kernel (Utopic HWE) regression
vendor_ubuntu·2015-06-21·CVSS 7.8
CVE-2015-1328 [HIGH] Linux kernel (Utopic HWE) regression
Title: Linux kernel (Utopic HWE) regression
Summary: The system could be made to crash under certain conditions.
The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's
overlayfs file system. The removal of a directory that only exists on the
lower layer results in a kernel panic.
We apologize for the inconvenience.
Original advisory details:
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
Ubuntu
Linux kernel (OMAP4) regression
vendor_ubuntu·2015-06-21·CVSS 7.8
CVE-2015-1328 [HIGH] Linux kernel (OMAP4) regression
Title: Linux kernel (OMAP4) regression
Summary: The system could be made to crash under certain conditions.
The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's
overlayfs file system. The removal of a directory that only exists on the
lower layer results in a kernel panic.
We apologize for the inconvenience.
Original advisory details:
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
Ubuntu
Linux kernel (Vivid HWE) vulnerability
vendor_ubuntu·2015-06-15
CVE-2015-1328 Linux kernel (Vivid HWE) vulnerability
Title: Linux kernel (Vivid HWE) vulnerability
Summary: The system could be made to run programs as an administrator.
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the s
Ubuntu
Linux kernel (Utopic HWE) vulnerability
vendor_ubuntu·2015-06-15
CVE-2015-1328 Linux kernel (Utopic HWE) vulnerability
Title: Linux kernel (Utopic HWE) vulnerability
Summary: The system could be made to run programs as an administrator.
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the
Ubuntu
Linux kernel (Trusty HWE) vulnerability
vendor_ubuntu·2015-06-15
CVE-2015-1328 Linux kernel (Trusty HWE) vulnerability
Title: Linux kernel (Trusty HWE) vulnerability
Summary: The system could be made to run programs as an administrator.
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the
Ubuntu
Linux kernel vulnerability
vendor_ubuntu·2015-06-15
CVE-2015-1328 Linux kernel vulnerability
Title: Linux kernel vulnerability
Summary: The system could be made to run programs as an administrator.
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kern
Ubuntu
Linux kernel vulnerability
vendor_ubuntu·2015-06-15
CVE-2015-1328 Linux kernel vulnerability
Title: Linux kernel vulnerability
Summary: The system could be made to run programs as an administrator.
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kern
Ubuntu
Linux kernel (OMAP4) vulnerability
vendor_ubuntu·2015-06-15
CVE-2015-1328 Linux kernel (OMAP4) vulnerability
Title: Linux kernel (OMAP4) vulnerability
Summary: The system could be made to run programs as an administrator.
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the stand
Debian
CVE-2015-1328: linux - The overlayfs implementation in the linux (aka Linux kernel) package before 3.19...
vendor_debian·2015·CVSS 7.8
CVE-2015-1328 [HIGH] CVE-2015-1328: linux - The overlayfs implementation in the linux (aka Linux kernel) package before 3.19...
The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem directory, which allows local users to obtain root access by leveraging a configuration in which overlayfs is permitted in an arbitrary mount namespace.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
Red Hat
CVE-2015-1328: The overlayfs implementation in the linux (aka Linux kernel) package before 3
vendor_redhat·CVSS 7.8
CVE-2015-1328 [HIGH] CVE-2015-1328: The overlayfs implementation in the linux (aka Linux kernel) package before 3
The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem directory, which allows local users to obtain root access by leveraging a configuration in which overlayfs is permitted in an arbitrary mount namespace.
Statement: Not vulnerable. This issue does not affect the versions of the kernel package as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2.
GHSA
GHSA-jhgp-x42x-cx6m: The overlayfs implementation in the linux (aka Linux kernel) package before 3
ghsa_unreviewed·2022-05-17
CVE-2015-1328 [HIGH] GHSA-jhgp-x42x-cx6m: The overlayfs implementation in the linux (aka Linux kernel) package before 3
The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem directory, which allows local users to obtain root access by leveraging a configuration in which overlayfs is permitted in an arbitrary mount namespace.
OSV
linux regression
osv·2015-06-21·CVSS 7.8
CVE-2015-1328 [HIGH] linux regression
linux regression
The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's
overlayfs file system. The removal of a directory that only exists on the
lower layer results in a kernel panic.
We apologize for the inconvenience.
Original advisory details:
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
OSV
linux-lts-utopic regression
osv·2015-06-21·CVSS 7.8
CVE-2015-1328 [HIGH] linux-lts-utopic regression
linux-lts-utopic regression
The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's
overlayfs file system. The removal of a directory that only exists on the
lower layer results in a kernel panic.
We apologize for the inconvenience.
Original advisory details:
Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.
OSV
CVE-2015-1328: The overlayfs implementation in the linux (aka Linux kernel) package before 3
osv·2015-06-15·CVSS 7.8
CVE-2015-1328 [HIGH] CVE-2015-1328: The overlayfs implementation in the linux (aka Linux kernel) package before 3
The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem directory, which allows local users to obtain root access by leveraging a configuration in which overlayfs is permitted in an arbitrary mount namespace.
VulnCheck
Linux Kernel overlayfs Privilege Escalation
vulncheck·2015·CVSS 7.8
CVE-2015-1328 [HIGH] Linux Kernel overlayfs Privilege Escalation
Linux Kernel overlayfs Privilege Escalation
The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem directory, which allows local users to obtain root access by leveraging a configuration in which overlayfs is permitted in an arbitrary mount namespace.
Affected: canonical ubuntu_linux
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.microsoft.com/security/blog/2021/08/19/how-to-proactively-defend-against-mozi-iot-botnet/
Exploit PoC: https://vulncheck.com/xdb/1a7d6e27e1ca; https://vulncheck.com/xdb/d054da419d7a
No detection rules found.
Exploit-DB
Linux Kernel (Ubuntu / Fedora / RedHat) - 'Overlayfs' Local Privilege Escalation (Metasploit)
exploitdb·2016-11-02·CVSS 7.8
CVE-2015-1328 [HIGH] Linux Kernel (Ubuntu / Fedora / RedHat) - 'Overlayfs' Local Privilege Escalation (Metasploit)
Linux Kernel (Ubuntu / Fedora / RedHat) - 'Overlayfs' Local Privilege Escalation (Metasploit)
---
##
# This module requires Metasploit: http://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
require "msf/core"
class MetasploitModule 'Overlayfs Privilege Escalation',
'Description' => %q{
This module attempts to exploit two different CVEs related to overlayfs.
CVE-2015-1328: Ubuntu specific -> 3.13.0-24 (14.04 default) MSF_LICENSE,
'Author' =>
[
'h00die ', # Module
'rebel' # Discovery
],
'DisclosureDate' => 'Jun 16 2015',
'Platform' => [ 'linux'],
'Arch' => [ ARCH_X86, ARCH_X86_64 ],
'SessionTypes' => [ 'shell', 'meterpreter' ],
'Targets' =>
[
[ 'CVE-2015-1328', { } ],
[ 'CVE-2015-8660', { } ]
],
'DefaultTarget' => 1,
'DefaultOptions' =>
{
'pay
Exploit-DB
Cisco EPC 3928 - Multiple Vulnerabilities
exploitdb·2016-06-07·CVSS 7.5
CVE-2016-1337 [HIGH] Cisco EPC 3928 - Multiple Vulnerabilities
Cisco EPC 3928 - Multiple Vulnerabilities
---
# Title: Cisco EPC 3928 Multiple Vulnerabilities
# Vendor: http://www.cisco.com/
# Vulnerable Version(s): Cisco Model EPC3928 DOCSIS 3.0 8x4 Wireless Residential Gateway
# CVE References: CVE-2015-6401 / CVE-2015-6402 / CVE-2016-1328 / CVE-2016-1336 / CVE-2016-1337
# Author: Patryk Bogdan from Secorda security team (http://secorda.com/)
Summary:
In recent security research, Secorda security team has found multiple vulnerabilities affecting Cisco EPC3928 Wireless Residential Gateway. Variants of this product can also be affected.
Using combination of several vulnerabilities, attacker is able to remotely download and decode boot configuration file, which you can see on PoC video below. The attacker is also able to reconfigure device in order
Exploit-DB
Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Local Privilege Escalation
exploitdb·2015-06-16·CVSS 7.8
CVE-2015-1328 [HIGH] Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Local Privilege Escalation
Linux Kernel 3.13.0
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#define LIB "#include \n\nuid_t(*_real_getuid) (void);\nchar path[128];\n\nuid_t\ngetuid(void)\n{\n_real_getuid = (uid_t(*)(void)) dlsym((void *) -1, \"getuid\");\nreadlink(\"/proc/self/exe\", (char *) &path, 128);\nif(geteuid() == 0 && !strcmp(path, \"/bin/su\")) {\nunlink(\"/etc/ld.so.preload\");unlink(\"/tmp/ofs-lib.so\");\nsetresuid(0, 0, 0);\nsetresgid(0, 0, 0);\nexecle(\"/bin/sh\", \"sh\", \"-i\", NULL, NULL);\n}\n return _real_getuid();\n}\n"
static char child_stack[1024*1024];
static int
child_exec(void *stuff)
{
char *file;
system("rm -rf /tmp/ns_sploit");
mkdir("/tmp/ns_sploit", 0777);
mkdir("/tmp/
Exploit-DB
Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Local Privilege Escalation (Access /etc/shadow)
exploitdb·2015-06-16
CVE-2015-1328 Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Local Privilege Escalation (Access /etc/shadow)
Linux Kernel 3.13.0 From Documentation/filesystems/overlayfs.txt [2]:
"Objects that are not directories (files, symlinks, device-special
files etc.) are presented either from the upper or lower filesystem as
appropriate. When a file in the lower filesystem is accessed in a way
the requires write-access, such as opening for write access, changing
some metadata etc., the file is first copied from the lower filesystem
to the upper filesystem (copy_up)."
The ovl_copy_up_* functions do not correctly check that the user has
permission to write files to the upperdir directory. The only permissions
that are checked is if the owner of the file that is being modified has
permission to write to the upperdir. Furthermore, when a file is copied from
the lowerdir the file metadata is carbon copied, in
Metasploit
Overlayfs Privilege Escalation
metasploit·CVSS 7.8
CVE-2015-1328 [HIGH] Overlayfs Privilege Escalation
Overlayfs Privilege Escalation
This module attempts to exploit two different CVEs related to overlayfs. CVE-2015-1328: Ubuntu specific -> 3.13.0-24 (14.04 default) < 3.13.0-55 3.16.0-25 (14.10 default) < 3.16.0-41 3.19.0-18 (15.04 default) < 3.19.0-21 CVE-2015-8660: Ubuntu: 3.19.0-18 < 3.19.0-43 4.2.0-18 < 4.2.0-23 (14.04.1, 15.10) Fedora: < 4.2.8 (vulnerable, un-tested) Red Hat: < 3.10.0-327 (rhel 6, vulnerable, un-tested)
CTF
README
ctf_writeups·CVSS 9.8
[CRITICAL] README
# Boot to root CTFs
Walkthroughs and notes of 'boot to root' CTFs mostly from VulnHub that I did for fun. I like to use vulnerable VMs from VulnHub (in addition to the ones I create) to organize hands-on penetration testing training sessions for junior security auditors/consultants :-)
### >> Classic pentest methodology to do a Boot2root CTF upload a Webshell)
➤ Clear-text passwords stored in 'public' website pages, configuration files, log files
➤ ...
2. Exploiting unpatched known vulnerabilities
➤ Web server (e.g. Apache Struts RCE: CVE-2017-12611/CVE-2017-9805/CVE-2017-9791, JBoss Java Deserialization RCE)
➤ Bash & web server CGI (e.g. Shellshock RCE CVE-2014-6271/CVE-2014-7169)
➤ Web CMS (e.g. Drupalgeddon2 RCE CVE-2018-7600)
➤ Web framework (e.g. PHP CGI RCE CVE-2012-1823)
➤ FTP s
Bugzilla
CVE kernel non-issue statements
bugzilla·2010-05-13·CVSS 5.0
[MEDIUM] CVE kernel non-issue statements
CVE kernel non-issue statements
This bug is to collect statements for Linux kernel-related CVE's that do not have their own top-level CVE SRT bug because it did not affect any of our supported kernels. These statements were also referred to as NVD statements and are noted on the NVD web site.
(From bug 589808) Do not change the bug alias, it needs to have "CVE" in the title. You can add extra statements in new comments or editing existing comments and they will be picked up correctly.
Discussion:
Statement CVE-2010-0747:
Not vulnerable. This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, 5 and Red Hat Enterprise MRG as they did not backport an out-of-tree drbd module (drbd8).
Statement CVE-2010-1446:
Not vulnerable. This issue di
http://seclists.org/oss-sec/2015/q2/717http://www.exploit-db.com/exploits/40688/http://www.securityfocus.com/bid/75206https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1328.htmlhttps://security-tracker.debian.org/tracker/CVE-2015-1328https://www.exploit-db.com/exploits/37292/http://seclists.org/oss-sec/2015/q2/717http://www.exploit-db.com/exploits/40688/http://www.securityfocus.com/bid/75206https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1328.htmlhttps://security-tracker.debian.org/tracker/CVE-2015-1328https://www.exploit-db.com/exploits/37292/
2016-11-28
Published
Exploited in the wild