摘要:
On Ubuntu kernels carrying both c914c0e27eb0 and UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs , an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks.
安全等级: Low
公告ID: KylinSec-SA-2024-1091
发布日期: 2024年2月26日
关联CVE: CVE-2023-2640
On Ubuntu kernels carrying both c914c0e27eb0 and UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs , an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2023-2640 | KY3.4-4A | kernel | Unaffected |
| CVE-2023-2640 | KY3.4-5A | kernel | Unaffected |
| CVE-2023-2640 | KY3.5.1 | kernel | Unaffected |
