Vulnetix
Try Vulnetix Request Demo
CVE-2019-15793 PUBLISHED

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, several locations which shift ids translate user/group ids before performing operations in the lower filesystem were translating them into init_user_ns, whereas they should have been translated into the s_user_ns for the lower filesystem. This resulted in using ids other than the intended ones in the lower fs, which likely did not map into the shifts s_user_ns. A local attacker could use this to possibly bypass discretionary access control permissions.

EPSS 0.03% · 9.7th percentile

Risk Scores

EPSS Score
0.03%
9.7th percentile

Affected Products

VendorProductVersions
Ubuntu:24.04:LTSlinux-raspi-realtime0, 6.8.0-2019.20
Ubuntu:20.04:LTSlinux-raspi25.3.0-1007.8, 5.3.0-1015.17, 5.3.0-1017.19
Ubuntu:22.04:LTSlinux-intel-iot-realtime0, 5.15.0-1073.75
Ubuntu:18.04:LTSlinux-gcp-edge5.0.0-1013.13~18.04.1, 0, 4.18.0-1004.5~18.04.1
Ubuntu:16.04:LTSlinux-hwe-edge4.11.0-14.20~16.04.1, 4.10.0-26.30~16.04.1, 4.10.0-24.28~16.04.1
Ubuntu:20.04:LTSlinux-riscv5.4.0-28.32, 0, 5.4.0-24.28
Ubuntu:20.04:LTSlinux-gkeop-5.155.15.0-1045.52~20.04.1, 5.15.0-1035.41~20.04.1, 5.15.0-1034.40~20.04.1
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1068.71+cvm1.1, 5.4.0-1065.68+cvm2.1, 5.4.0-1064.67+cvm1.1
Ubuntu:20.04:LTSlinux-gke5.4.0-1091.98, 5.4.0-1084.90, 5.4.0-1033.35
Ubuntu:18.04:LTSlinux-hwe-edge5.3.0-24.26~18.04.2, 5.3.0-23.25~18.04.2, 5.3.0-22.24~18.04.1
Ubuntu:22.04:LTSlinux-realtime5.15.0-1032.35, 0
Ubuntu:22.04:LTSlinux-riscv*, 5.15.0-1008.8, 5.15.0-1016.18
Ubuntu:20.04:LTSlinux-gkeop0, 5.4.0-1018.19, 5.4.0-1068.72
Ubuntu:18.04:LTSlinux-azure-edge4.18.0-1008.8~18.04.1, 5.0.0-1012.12~18.04.2, 4.18.0-1006.6~18.04.1

Timeline

References

Open in Interactive Console →