9 matches found
Astra Linux – Vulnerability in Linux, Linux 5.10
A vulnerability was discovered in the fs/inode.c:inodeinitowner function logic of the Linux kernel. This vulnerability allows local users to create files for the XFS file system with unintended group ownership, along with group execution and SGID permission bits set. This occurs in a scenario whe...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001533)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001533 advisory. A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an...
MiracleLinux 4 : kernel-2.6.32-754.12.1.el6 (AXSA:2019-3870:02)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-3870:02 advisory. kernel: Missing check in fs/inode.c:inodeinitowner does not clear SGID bit on non-directories for non-members CVE-2018-13405 Tenable has extracted the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414543)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414543 advisory. A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an...
SUSE CVE-2021-4037
A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belon...
DEBIAN-CVE-2021-4037
A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belon...
kernel: Missing check in fs/inode.c:inode_init_owner() does not clear SGID bit on non-directories for non-members
A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group an...
Updated kernel packages fixes security vulnerabilities
This kernel update is based on the upstream 4.14.56 and fixes at least the following security issues: kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptio...
UBUNTU-CVE-2018-13405
The inodeinitowner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigge...