gix-fs: Symlink prefix-reuse allows worktree escape during checkout

Summary A malicious tree can be constructed that will, when checked out with gitoxide, permit writing an attacker-controlled symlink into any existing directory the user has write access to. Details During checkout, all symlink index entries are deferred and created after regular files using a...

Multiple local elevation of privilege vulnerabilities in Linux kernel

The Linux Kernel is the kernel of the Linux operating system. Multiple elevation of privilege vulnerabilities exist in the eCryptfs subsystem implementation in versions of Linux kernel prior to 3.18. It could allow a local user to gain elevated privileges through a larger file system stack...