Lucene search
+L

238 matches found

NVD
NVD
added 2020/04/24 12:15 a.m.35 views

CVE-2019-15794

Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma-vmfile in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vmfile points. On...

7.2CVSS6.7AI score0.01158EPSS
Exploits2References4
NVD
NVD
added 2020/04/24 12:15 a.m.30 views

CVE-2019-15791

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfsbtrfsioctlfdreplace installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, whi...

7.8CVSS6.9AI score0.01317EPSS
Exploits1References3
OSV
OSV
added 2020/04/24 12:15 a.m.2 views

CVE-2019-15791

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfsbtrfsioctlfdreplace installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, whi...

7.8CVSS7.1AI score0.01317EPSS
Exploits1References3
OSV
OSV
added 2020/04/24 12:15 a.m.9 views

CVE-2019-15794

Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma-vmfile in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vmfile points. On...

6.7CVSS8.2AI score
Exploits0References4
Prion
Prion
added 2020/04/24 12:15 a.m.22 views

Input validation

Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma-vmfile in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vmfile points. On...

7.2CVSS6.2AI score0.01158EPSS
Exploits2References4Affected Software2
Prion
Prion
added 2020/04/24 12:15 a.m.19 views

Design/Logic Flaw

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfsbtrfsioctlfdreplace installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, whi...

4.6CVSS7.3AI score0.01317EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2020/04/23 11:55 p.m.39 views

CVE-2019-15794 Reference counting error in overlayfs/shiftfs error path when used in conjuction with aufs

Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma-vmfile in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vmfile points. On...

7.1CVSS7.7AI score0.01158EPSS
Exploits2References4
Debian CVE
Debian CVE
added 2020/04/23 11:55 p.m.57 views

CVE-2019-15794

Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma-vmfile in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vmfile points. On...

7.2CVSS7.2AI score0.01158EPSS
Exploits2
Cvelist
Cvelist
added 2020/04/23 11:55 p.m.36 views

CVE-2019-15791 Reference count underflow in shiftfs

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfsbtrfsioctlfdreplace installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, whi...

7.1CVSS7.7AI score0.01317EPSS
Exploits1References3
CVE
CVE
added 2020/04/23 11:55 p.m.120 views

CVE-2019-15791

CVE-2019-15791 describes a refcount underflow in the Linux kernel shiftfs implementation caused by a non-upstream patch in Ubuntu 5.0/5.3 kernels: shiftfs_btrfs_ioctl_fd_replace() can create a file descriptor to a lower-filesystem file without an extra reference, and closing the FD after the btrf...

7.8CVSS7.2AI score0.01317EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2020/04/23 11:55 p.m.50 views

CVE-2019-15791

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfsbtrfsioctlfdreplace installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, whi...

7.8CVSS7.8AI score0.01317EPSS
Exploits1
Packet Storm
Packet Storm
added 2019/11/14 12:0 a.m.283 views

Ubuntu shiftfs refcount Underflow / Type Confusion

Ubuntu: refcount underflow and type confusion in shiftfs Tested on Ubuntu 19.10, kernel "5.3.0-19-generic 20-Ubuntu". Ubuntu ships a filesystem "shiftfs" in fs/shiftfs.c in the kernel tree that doesn't exist upstream. This filesystem can be mounted from user namespaces, meaning that this is...

0.2AI score0.00685EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2019/11/12 6:0 p.m.29 views

CVE-2019-15791

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfsbtrfsioctlfdreplace installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, whi...

7.8CVSS7.1AI score0.01317EPSS
Exploits1References3
OSV
OSV
added 2019/11/12 6:0 p.m.5 views

UBUNTU-CVE-2019-15791

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfsbtrfsioctlfdreplace installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, whi...

7.8CVSS7.1AI score0.01317EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2019/11/08 12:0 a.m.37 views

CVE-2019-15794

Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma-vmfile in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vmfile points. On...

7.2CVSS6.8AI score0.01158EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2019/11/08 12:0 a.m.8 views

PT-2019-5308

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Ubuntu kernel series 5.0 and 5.3 Description The issue is related to the Overlayfs and ShiftFS drivers in the Linux kernel, specifically with operations on a resource after its expiration or...

7.3CVSS7.2AI score0.01158EPSS
Exploits2References40
OSV
OSV
added 2017/04/19 11:59 p.m.6 views

CVE-2017-7979

The cookie feature in the packet action API implementation in net/sched/actapi.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the tb nlattr array, which allows local users to cause a denial of service uninitialized memory access and refcount underflow, and system hang or crash or possib...

7.8CVSS7.5AI score0.00395EPSS
Exploits0References8
Prion
Prion
added 2017/04/19 11:59 p.m.22 views

Design/Logic Flaw

The cookie feature in the packet action API implementation in net/sched/actapi.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the tb nlattr array, which allows local users to cause a denial of service uninitialized memory access and refcount underflow, and system hang or crash or possib...

7.2CVSS7.8AI score0.00395EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder