← voltar
CVE-2023-2612

shiftfs lock unbalance in Ubuntu-specific kernels

CVSS 4.4 MEDIUMEPSS 0.3%CWE-667
Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Produtos afetados
Canonical Ltd. · ubuntu-linux

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.htmlhttps://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/kinetic/commit/?id=02b47547824b1cd0d55c6744f91886f04de8947ehttps://ubuntu.com/security/CVE-2023-2612https://ubuntu.com/security/notices/USN-6122-1https://ubuntu.com/security/notices/USN-6123-1https://ubuntu.com/security/notices/USN-6124-1https://ubuntu.com/security/notices/USN-6127-1