CVE-2023-32629
CVE-2023-32629
In short
A flaw in Ubuntu's kernel allows a local user to gain higher system privileges by bypassing permission checks in the overlayfs feature. An attacker already logged into the system can exploit this to execute commands with administrator rights.
Technical detail
Local privilege escalation in overlayfs ovl_copy_up_meta_inode_data function that skips permission validation during ovl_do_setxattr calls. Attack vector requires local access; pre-condition is ability to interact with overlayfs mounts. Impact allows unprivileged users to escalate to root.
Summary generated and translated by AI from the official description.
Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks when calling ovl_do_setxattr on Ubuntu kernels
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Canonical · Ubuntu KernelWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/174577/Kernel-Live-Patch-Security-Notice-LSN-0097-1.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32629https://lists.ubuntu.com/archives/kernel-team/2023-July/140920.htmlhttps://ubuntu.com/security/notices/USN-6250-1https://wiz.io/blog/ubuntu-overlayfs-vulnerability