USN-8297-1 linux-gcp-5.15 vulnerabilities

Stonejiajia, Shir Tamari and Sagi Tzadik discovered that the OverlayFS implementation in the Ubuntu Linux kernel did not properly perform permission checks in certain situations. A local attacker could possibly use this to gain elevated privileges. CVE-2023-2640 Shir Tamari and Sagi Tzadik...

ROS-20260414-73-0060

A vulnerability in the ovlpermission function of the fs/overlayfs/inode.c module of the Overlayfs file system of the Linux kernel is related to NULL pointer dereferencing. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected...

MiracleLinux 8 : kernel-4.18.0-348.7.1.el8_5 (AXSA:2022-2949:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-2949:01 advisory. kernel: In Overlayfs missing a check for a negative dentry before calling vfsrename CVE-2021-20321 Tenable has extracted the preceding description block...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001426)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001426 advisory. Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example,...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001952)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001952 advisory. The overlayfs implementation in the Linux kernel through 4.5.2 does not properly restrict the mount namespace, which allows local users to gain privileges by mountin...

EUVD-2016-2670

Malware in sbrugna...

EUVD-2020-8086

Malware in sbrugna...

EUVD-2025-14127

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-3493

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an...

Linux Distros Unpatched Vulnerability : CVE-2021-3847

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a...

Linux Distros Unpatched Vulnerability : CVE-2021-46972

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ovl: fix leaked dentry Since commit 6815f479ca90 ovl: use only uppermetacopy state in...

The vulnerability of the vfs_getattr() function in the overlayfs component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the vfsgetattr function in the overlayfs component of the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2025-37863 ovl: don't allow datadir only

In the Linux kernel, the following vulnerability has been resolved: ovl: don't allow datadir only In theory overlayfs could support upper layer directly referring to a data layer, but there's no current use case for this. Originally, when data-only layers were introduced, this wasn't allowed, onl...

CVE-2024-56570 ovl: Filter invalid inodes with missing lookup function

In the Linux kernel, the following vulnerability has been resolved: ovl: Filter invalid inodes with missing lookup function Add a check to the ovldentryweird function to prevent the processing of directory inodes that lack the lookup function. This is important because such inodes can cause error...

Exploit for Code Injection in Sqlpad

CVE-2022-0944: Privilege Escalation Vulnerability in OverlayFS...

Canonical Ubuntu Linux 安全漏洞

Canonical Ubuntu Linux is a Linux operating system from Canonical, a British company. Canonical Ubuntu Linux suffers from a security vulnerability that stems from OverlayFS in the kernel not performing privilege checks, resulting in an elevation of privilege vulnerability...

LSN-0095-1 Kernel Live Patch Security Notice

It was discovered that the OverlayFS implementation in the Linux kernel did not properly handle copy up operation in some conditions. A local attacker could possibly use this to gain elevated privileges.CVE-2023-0386 It was discovered that the Broadcom FullMAC USB WiFi driver in the Linux kernel...

The vulnerability of the stat() function in the OverlayFS subsystem of Linux kernels allows attackers to increase their privileges.

The vulnerability of the stat function in the OverlayFS subsystem of Linux operating systems is related to deficiencies in access control when processing setuid and setgid attributes. Exploiting this vulnerability can allow attackers to enhance their privileges...

SUSE CVE-2019-10140

A vulnerability was found in Linux kernel's, versions up to 3.10, implementation of overlayfs. An attacker with local access can create a denial of service situation via NULL pointer dereference in ovlposixaclcreate function in fs/overlayfs/dir.c. This can allow attackers with ability to create...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a flaw in the OverlayFS subsystem that has a setuid file execution capability. An attacker exploits the...