Privileged Extended Attributes Vulnerability in Ubuntu Kernels

Privileged Extended Attributes Vulnerability in Ubuntu Kernels

CVE-2023-2640 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs", an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks.

Learn more about our Cis Benchmark Audit For Ubuntu Linux.