Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003102)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003102 advisory. The inodeinitowner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where...

7.8CVSS6.4AI score0.0101EPSS
Exploits2References31
OSV
OSV
added 2024/02/29 10:40 a.m.8 views

CLSA-2024-1709203226 kernel: Fix of 7 CVEs

KVM: nSVM: avoid picking up unsupported bits from L2 in intctl CVE-2021-3653 CVE-2021-3653 - xen/netfront: fix leaking data in shared pages CVE-2022-33740 - xfs: fix up non-directory creation in SGID directories CVE-2021-4037 - netsched: clsroute: remove from list when handle is 0 CVE-2022-2588 -...

8.8CVSS7.1AI score0.06214EPSS
Exploits8References1
RedHat Linux
RedHat Linux
added 2022/03/16 2:12 p.m.7 views

QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405

A flaw was found in the QEMU virtio-fs shared file system daemon virtiofsd implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certa...

7.8CVSS6.6AI score0.00332EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/03/07 3:12 p.m.5 views

QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405

A flaw was found in the QEMU virtio-fs shared file system daemon virtiofsd implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certa...

7.8CVSS6.6AI score0.00332EPSS
Exploits0References4
OSV
OSV
added 2022/01/28 12:0 a.m.4 views

UBUNTU-CVE-2022-0358

A flaw was found in the QEMU virtio-fs shared file system daemon virtiofsd implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certa...

7.8CVSS7.1AI score0.00332EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2018/10/12 12:0 a.m.130 views

Unbreakable Enterprise kernel security update

2.6.39-400.302.2 - Revert 'Fix up non-directory creation in SGID directories' Brian Maly Orabug: 28781234 2.6.39-400.302.1 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459730...

7.8CVSS0.4AI score0.14806EPSS
Exploits9
Packet Storm
Packet Storm
added 2017/04/01 12:0 a.m.86 views

AUFS (Ubuntu 15.10) Privilege Escalation

Source: http://www.halfdog.net/Security/2016/AufsPrivilegeEscalationInUserNamespaces/ Introduction Problem description: Aufs is a union filesystem to mix content of different underlying filesystems, e.g. read-only medium with r/w RAM-fs. That is also allowed in user namespaces when module was...

4.6CVSS1.3AI score0.0095EPSS
Exploits4
exploitpack
exploitpack
added 2016/11/22 12:0 a.m.19 views

Ubuntu 14.0415.10 - User Namespace Overlayfs Xattr SetGID Privilege Escalation

Ubuntu 14.0415.10 - User Namespace Overlayfs Xattr SetGID Privilege Escalation Source: http://www.halfdog.net/Security/2016/UserNamespaceOverlayfsXattrSetgidPrivilegeEscalation/ Introduction Problem description: Linux user namespace allows to mount file systems as normal user, including the...

0.7AI score
Exploits0
Rows per page
Query Builder