On Ubuntu kernels carrying both... CVE-2023-2640

- AV AC AU C I A
发布: 2023-07-26
修订: 2023-08-03

On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs", an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息