Lucene search
K

843 matches found

Ubuntu
Ubuntu
added 2026/05/11 2:2 p.m.20 views

USN-8255-2: Linux kernel (Azure) vulnerabilities

Stonejiajia, Shir Tamari and Sagi Tzadik discovered that the OverlayFS implementation in the Ubuntu Linux kernel did not properly perform permission checks in certain situations. A local attacker could possibly use this to gain elevated privileges. CVE-2023-2640 Shir Tamari and Sagi Tzadik...

9.8CVSS6.1AI score0.15783EPSS
Exploits14
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.7 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-8255-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8255-1 advisory. Stonejiajia, Shir Tamari and Sagi Tzadik discovered that the OverlayFS implementation in the Ubuntu Linux kernel did not properly perform...

9.8CVSS7AI score0.15783EPSS
Exploits14References5
Ubuntu
Ubuntu
added 2026/05/07 3:1 p.m.18 views

USN-8255-1: Linux kernel vulnerabilities

Stonejiajia, Shir Tamari and Sagi Tzadik discovered that the OverlayFS implementation in the Ubuntu Linux kernel did not properly perform permission checks in certain situations. A local attacker could possibly use this to gain elevated privileges. CVE-2023-2640 Shir Tamari and Sagi Tzadik...

9.8CVSS6.9AI score0.15783EPSS
Exploits14
GithubExploit
GithubExploit
added 2026/05/02 9:35 a.m.104 views

kernel-exploits

Kernel Exploits ppkey Kernels: 3.8.0, 3.8.1, 3...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/25 2:42 p.m.145 views

Exploit for Incorrect Authorization in Canonical Ubuntu_Linux

CVE-2023-32629 — OverlayFS Local Full Privilege Escalation Ove...

7.8CVSS7.2AI score0.08894EPSS
Exploits12
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.6 views

SUSE CVE-2026-31465

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

5.4AI score0.00121EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/22 3:31 p.m.9 views

EUVD-2026-24809

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

5.4AI score0.00121EPSS
Exploits0References4
CVE
CVE
added 2026/04/22 1:53 p.m.13 views

CVE-2026-31465

CVE-2026-31465 in the Linux kernel concerns the writeback path for filesystems without data integrity guarantees (e.g., fuse). The fix adds a SB_I_NO_DATA_INTEGRITY superblock flag; when set, sync kicks off writeback of dirty inodes but does not wait for flusher threads to finish. The change move...

5.5CVSS5.4AI score0.00121EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.5 views

PT-2026-34370

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SB I NO DATA INTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set...

5.4AI score0.00121EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/04/20 9:31 a.m.123 views

Exploit for Privilege Context Switching Error in Canonical Ubuntu_Linux

OverlayFS-LPE-Exploit Type...

8.8CVSS6.9AI score0.43988EPSS
Exploits27
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007464)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007464 advisory. In the Linux kernel, the following vulnerability has been resolved: ovl: fix leaked dentry Since commit 6815f479ca90 ovl: use only uppermetacopy state in ovllookup,...

5.5CVSS6.1AI score0.00249EPSS
Exploits0References4
Redos
Redos
added 2026/04/14 12:0 a.m.5 views

ROS-20260414-73-0060

A vulnerability in the ovlpermission function of the fs/overlayfs/inode.c module of the Overlayfs file system of the Linux kernel is related to NULL pointer dereferencing. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected...

5.5CVSS5.8AI score0.00133EPSS
Exploits0
GithubExploit
GithubExploit
added 2026/04/04 7:0 p.m.163 views

Exploit for Incorrect Authorization in Canonical Ubuntu_Linux

CVE-2023-2640/3262-PoC Minimal PoCs for Ubuntu OverlayFS loca...

7.8CVSS6.8AI score0.15783EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005482)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005482 advisory. A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernels OverlayFS...

7.8CVSS7AI score0.0788EPSS
Exploits14References3
GithubExploit
GithubExploit
added 2026/02/25 10:30 a.m.196 views

Exploit for Privilege Context Switching Error in Canonical Ubuntu_Linux

CVE-2021-3493 – Ubuntu OverlayFS Local Privilege Escalation...

8.8CVSS5.7AI score0.43988EPSS
Exploits27
GithubExploit
GithubExploit
added 2026/02/25 10:30 a.m.246 views

Exploit for Privilege Context Switching Error in Canonical Ubuntu_Linux

CVE-2021-3493 – Ubuntu OverlayFS Local Privilege Escalation...

8.8CVSS5.7AI score0.43988EPSS
Exploits27
Wolfi
Wolfi
added 2026/02/13 7:48 p.m.6 views

GHSA-W4GW-W5JQ-G9JH vulnerabilities

Vulnerabilities for packages: wuzz, runc, cilium-envoy, k3s, k8s-device-plugin, aws-load-balancer-controller, gitness, fuse-overlayfs-snapshotter...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/02/13 7:17 p.m.2 views

GHSA-W4GW-W5JQ-G9JH vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce, gitness, k3s, rke2-runtime, runc, fuse-overlayfs-snapshotter, gendesk, localstack, cilium-envoy, backup-restore-operator, terraform, cilium-envoy-fips, aws-load-balancer-controller, k8s-device-plugin, nvidia-gpu-operator-validator, rke2-runtime-fips,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/02/11 1:17 p.m.7 views

CVE-2025-58190 vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce, gitness, k3s, rke2-runtime, runc, fuse-overlayfs-snapshotter, gendesk, localstack, cilium-envoy, backup-restore-operator, terraform, cilium-envoy-fips, aws-load-balancer-controller, k8s-device-plugin, nvidia-gpu-operator-validator, rke2-runtime-fips,...

5.3CVSS6.7AI score0.00482EPSS
Exploits1
Chainguard
Chainguard
added 2026/02/11 1:17 p.m.8 views

CVE-2025-47911 vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce, gitness, k3s, rke2-runtime, runc, fuse-overlayfs-snapshotter, gendesk, localstack, cilium-envoy, backup-restore-operator, terraform, cilium-envoy-fips, aws-load-balancer-controller, k8s-device-plugin, nvidia-gpu-operator-validator, rke2-runtime-fips,...

5.3CVSS6.7AI score0.00502EPSS
Exploits0
Rows per page
Query Builder