CVE-2015-7723

NameCVE-2015-7723
DescriptionAMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
NVD severityhigh (attack range: local)
Debian Bugs803517

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
fglrx-driver (PTS)wheezy/non-free1:12-6+point-3vulnerable
jessie/non-free1:15.9-4~deb8u2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
fglrx-driversource(unstable)1:15.7-1high803517

Notes

[jessie] - fglrx-driver <no-dsa> (Non-free not supported)
[wheezy] - fglrx-driver <no-dsa> (non-free not supported)
[squeeze] - fglrx-driver <no-dsa> (non-free not supported)
http://seclists.org/fulldisclosure/2015/Oct/104

Search for package or bug name: Reporting problems