Lucene search
+L

383 matches found

nessus
nessus
added 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-48970

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: afunix: Get userns from inskb in unixdiaggetexact. Wei Chen reported a NULL deref in skusern...

5.5CVSS6.4AI score0.00245EPSS
Exploits0References2
nvd
nvd
added 2025/08/11 4:15 p.m.6 views

CVE-2025-38499

In the Linux kernel, the following vulnerability has been resolved: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be able to undo" may be a...

5.5CVSS0.00147EPSS
Exploits0References8
osv
osv
added 2025/08/11 4:15 p.m.14 views

AZL-66174 CVE-2025-38499 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be able to undo" may be a...

5.5CVSS6.5AI score0.00147EPSS
Exploits0References1
osv
osv
added 2025/08/11 4:15 p.m.1 views

DEBIAN-CVE-2025-38499

In the Linux kernel, the following vulnerability has been resolved: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be able to undo" may be a...

5.5CVSS5.6AI score0.00147EPSS
Exploits0References1
osv
osv
added 2025/08/11 4:15 p.m.8 views

AZL-73470 CVE-2025-38499 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be able to undo" may be a...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References1
osv
osv
added 2025/08/11 4:15 p.m.6 views

UBUNTU-CVE-2025-38499

In the Linux kernel, the following vulnerability has been resolved: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be able to undo" may be a...

5.5CVSS6AI score0.00147EPSS
Exploits0References40
osv
osv
added 2025/08/11 4:1 p.m.6 views

CVE-2025-38499 clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns

In the Linux kernel, the following vulnerability has been resolved: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be able to undo" may be a...

5.5CVSS6.3AI score0.00147EPSS
Exploits0References11
cve
cve
added 2025/08/11 4:1 p.m.109 views

CVE-2025-38499

CVE-2025-38499 affects the Linux kernel. The issue arises in clone_private_mnt() where CAP_SYS_ADMIN is checked in the wrong user namespace, potentially allowing a local attacker with low privileges to influence mount handling and affect availability. The referenced advisories show this CVE is tr...

5.5CVSS7AI score0.00147EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2025/08/11 4:1 p.m.18 views

CVE-2025-38499 clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns

In the Linux kernel, the following vulnerability has been resolved: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be able to undo" may be a...

0.00147EPSS
Exploits0References6
cnnvd
cnnvd
added 2025/08/11 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from cloneprivatemnt not validating the CAPSYSADMIN privilege in the user's namespace, which could lead to elevat...

5.5CVSS6.9AI score0.00147EPSS
Exploits0References7
nessus
nessus
added 2025/08/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-15793

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, several locations which shift ids translate user/group id...

8.8CVSS7.7AI score0.00685EPSS
Exploits2References2
susecve
susecve
added 2025/07/09 11:23 p.m.3 views

SUSE CVE-2025-38247

In the Linux kernel, the following vulnerability has been resolved: userns and mntidmap leak in opentreeattr2 Once wantmountsetattr has returned a positive, it does require finishmountkattr to release -mntuserns. Failing domountsetattr does not change that. As the result, we can end up leaking...

5.5CVSS6.5AI score0.0012EPSS
Exploits0References3
cvelist
cvelist
added 2025/07/09 10:42 a.m.13 views

CVE-2025-38247 userns and mnt_idmap leak in open_tree_attr(2)

In the Linux kernel, the following vulnerability has been resolved: userns and mntidmap leak in opentreeattr2 Once wantmountsetattr has returned a positive, it does require finishmountkattr to release -mntuserns. Failing domountsetattr does not change that. As the result, we can end up leaking...

0.0012EPSS
Exploits0References2
osv
osv
added 2025/07/09 10:42 a.m.7 views

CVE-2025-38247 userns and mnt_idmap leak in open_tree_attr(2)

In the Linux kernel, the following vulnerability has been resolved: userns and mntidmap leak in opentreeattr2 Once wantmountsetattr has returned a positive, it does require finishmountkattr to release -mntuserns. Failing domountsetattr does not change that. As the result, we can end up leaking...

5.5CVSS6.5AI score0.0012EPSS
Exploits0References5
debiancve
debiancve
added 2025/07/09 10:42 a.m.6 views

CVE-2025-38247

In the Linux kernel, the following vulnerability has been resolved: userns and mntidmap leak in opentreeattr2 Once wantmountsetattr has returned a positive, it does require finishmountkattr to release -mntuserns. Failing domountsetattr does not change that. As the result, we can end up leaking...

5.5CVSS5.5AI score0.0012EPSS
Exploits0
cve
cve
added 2025/07/09 10:42 a.m.28 views

CVE-2025-38247

CVE-2025-38247 concerns the Linux kernel: a leak of user namespaces and possibly mnt_idmap in open_tree_attr(2) due to not releasing ->mnt_userns after a positive result from want_mount_setattr(). The root cause is that finish_mount_kattr() must release the namespace, and if do_mount_setattr()...

5.5CVSS6.5AI score0.0012EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2025/06/24 12:0 a.m.2 views

PT-2025-28875 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel related to userns and mnt idmap leaks within the open tree attr2 function. Specifically, a failure in do mount setattr does not release the mnt userns...

4.6CVSS5.8AI score0.0012EPSS
Exploits0References14
qualysblog
qualysblog
added 2025/03/27 5:10 p.m.13 views

Qualys TRU Discovers Three Bypasses of Ubuntu Unprivileged User Namespace Restrictions

The Qualys Threat Research Unit TRU recently disclosed three security bypasses in Ubuntu's unprivileged user namespace restrictions. Qualys responsibly disclosed these vulnerabilities to the Ubuntu Security Team on January 15, 2025, and has been working with Ubuntu since then. Qualys TRU uncovere...

7.3AI score
Exploits0
nessus
nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2023-25809

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes...

6.3CVSS7.1AI score0.00327EPSS
Exploits1References2
nessus
nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2015-4177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The collectmounts function in fs/namespace.c in the Linux kernel before 4.0.5 does not properly consider that it may execute after a path has been unmounted,...

5.5CVSS6.7AI score0.00367EPSS
Exploits0References2
Rows per page
Query Builder