CVE-2019-15793— Mishandling of file-system uid/gid with namespaces in shiftfs
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-15793
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mishandling of file-system uid/gid with namespaces in shiftfs
Source: NVD (National Vulnerability Database)
Vulnerability Description
In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, several locations which shift ids translate user/group ids before performing operations in the lower filesystem were translating them into init_user_ns, whereas they should have been translated into the s_user_ns for the lower filesystem. This resulted in using ids other than the intended ones in the lower fs, which likely did not map into the shifts s_user_ns. A local attacker could use this to possibly bypass discretionary access control permissions.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
文件和路径信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
Canonical Ubuntu Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。Canonical Ubuntu Linux是英国Canonical公司的一套Linux操作系统。 Canonical Ubuntu Linux 18.04(lts)版本和19.04版本中的Linux kernel 5.0版本和5.3版本的shiftfs实现存在安全漏洞。本地攻击者可利用该漏洞绕过DAC权限或造成其他危害。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Ubuntu | Shiftfs in the Linux kernel | 5.3.0-11.12 ~ 5.3 kernel* | - |
II. Public POCs for CVE-2019-15793
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-15793
请登录查看更多情报信息。
- https://usn.ubuntu.com/usn/usn-4184-1x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2019-15793
Same Patch Batch · Ubuntu · 2020-04-23 · 4 CVEs total
| CVE-2019-15791 | 7.1 HIGH | Reference count underflow in shiftfs |
| CVE-2019-15792 | 7.1 HIGH | Type confusion in shiftfs |
| CVE-2019-15794 | 7.1 HIGH | Reference counting error in overlayfs/shiftfs error path when used in conjuction with aufs |
IV. Related Vulnerabilities
Same weakness: CWE-538
- CVE-2023-54346
WordPress Plugin Backup Migration 1.2.8 Unauthenticated Data - CVE-2026-7071
CodeAstro Online Job Portal user-cvs file information disclo - CVE-2026-6160
code-projects Simple ChatBox Endpoint chatbox.sql SimpleChat - CVE-2019-25706
Across DR-810 ROM-0 Unauthenticated File Disclosure - CVE-2026-33705
Chamilo LMS has unauthenticated access to Twig template sour
V. Comments for CVE-2019-15793
No comments yet