CVE-2015-7724

NameCVE-2015-7724
DescriptionAMD fglrx-driver before 15.9 allows local users to gain privileges via a symlink attack. NOTE: This vulnerability exists due to an incomplete fix for CVE-2015-7723.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severityhigh (attack range: local)
Debian Bugs803517

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
fglrx-driver (PTS)jessie/non-free1:15.9-4~deb8u2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
fglrx-driversource(unstable)1:15.9-1high803517

Notes

[jessie] - fglrx-driver <no-dsa> (Non-free not supported)
[wheezy] - fglrx-driver <no-dsa> (non-free not supported)
[squeeze] - fglrx-driver <no-dsa> (non-free not supported)
http://seclists.org/fulldisclosure/2015/Oct/103

Search for package or bug name: Reporting problems