Posted by Portcullis Advisories on Oct 29

Vulnerability title: Privilege Escalation Via Symlink Attacks On POSIX Shared Memory With Insecure Permissions In AMD
fglrx-driver
CVE: CVE-2015-7724
Vendor: AMD
Product: fglrx-driver
Affected version: 15.7
Fixed version: 15.9
Reported by: Tim Brown
Details:

In the process of validating the fix for CVE-2015-7723, it has been identified that the userland portion of the
fglrx-driver utilised by Xorg still allows privilege escalation via symlink…