Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-3492

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copyfromuser correctly. These cou...

8.8CVSS6.9AI score0.01547EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2021/05/17 9:4 a.m.99 views

LSN-0077-1: Kernel Live Patch Security Notice

Vincent Dehors discovered that the shiftfs file system in the Ubuntu Linux kernel did not properly handle faults in copyfromuser when passing through ioctls to an underlying file system. A local attacker could use this to cause a denial of service memory exhaustion or execute arbitrary...

8.8CVSS7.3AI score0.01547EPSS
Exploits1
Cvelist
Cvelist
added 2021/04/17 4:20 a.m.37 views

CVE-2021-3492 Ubuntu linux kernel shiftfs file system double free vulnerability

Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copyfromuser correctly. These could lead to either a double-free situation or memory not being freed at all. An attacker could use this to cause a denial of service kerne...

8.8CVSS8.3AI score0.01547EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2021/04/16 7:11 p.m.32 views

CVE-2021-3492

A flaw use after free or use before allocation in the Linux kernel Shiftfs file-system was found in the way user calls one of the few ioctls. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

8.8CVSS1.7AI score0.01547EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-4915-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.5AI score0.43988EPSS
Exploits28References4
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-4917-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.43988EPSS
Exploits28References4
Ubuntu
Ubuntu
added 2021/04/15 11:35 p.m.178 views

USN-4917-1: Linux kernel vulnerabilities

It was discovered that the overlayfs implementation in the Linux kernel did not properly validate the application of file system capabilities with respect to user namespaces. A local attacker could use this to gain elevated privileges. CVE-2021-3493 Vincent Dehors discovered that the shiftfs file...

8.8CVSS7.5AI score0.43988EPSS
Exploits28
Ubuntu
Ubuntu
added 2021/04/15 10:22 p.m.129 views

USN-4915-1: Linux kernel (OEM) vulnerabilities

It was discovered that the overlayfs implementation in the Linux kernel did not properly validate the application of file system capabilities with respect to user namespaces. A local attacker could use this to gain elevated privileges. CVE-2021-3493 Vincent Dehors discovered that the shiftfs file...

8.8CVSS7.6AI score0.43988EPSS
Exploits28
Rows per page
Query Builder