5 matches found
EUVD-2019-6715
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-15793
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, several locations which shift ids translate user/group id...
CVE-2021-3492
Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copyfromuser correctly. These could lead to either a double-free situation or memory not being freed at all. An attacker could use this to cause a denial of service kerne...
CVE-2021-3492
Shiftfs is affected in the Ubuntu Linux kernel; a fault in copy_from_user() handling can cause a double-free or leaked memory, enabling local denial of service (kernel memory exhaustion) or privilege escalation. The vulnerability is documented as CVE-2021-3492, with Ubuntu/security advisories (e....
CVE-2019-15792
In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfsbtrfsioctlfdreplace calls fdgetoldfd, then without further checks passes the resulting file into shiftfsrealfdget, which casts file-privatedata, a void that points to a filesystem-depende...