Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Reference count underflow in shiftfs
Vulnerability Description
In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfs_btrfs_ioctl_fd_replace() installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, which then puts a reference to that file, leading to a refcount underflow.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Vulnerability Type
在过期或释放后对资源进行操作
Vulnerability Title
Linux kernel 数字错误漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。Canonical Ubuntu Linux是英国Canonical公司的一套Linux操作系统。 Canonical Ubuntu Linux 18.04(lts)版本和19.04版本中的Linux kernel 5.0版本和5.3版本的shiftfs实现存在数字错误漏洞。本地攻击者可利用该漏洞造成拒绝服务(系统崩溃)或可能执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A