Main Vulnerability Database SB2020042447

SB2020042447 - Integer underflow in Linux kernel

Published: April 24, 2020

Security Bulletin ID SB2020042447

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Integer underflow (CVE-ID: CVE-2019-15791)

The vulnerability allows a local user to execute arbitrary code.

In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfs_btrfs_ioctl_fd_replace() installs an fd referencing a file from the lower filesystem without taking an additional reference to that file. After the btrfs ioctl completes this fd is closed, which then puts a reference to that file, leading to a refcount underflow.

Remediation

Install update from vendor's website.

References

https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/eoan/commit/?id=601a64857b3d7040ca15c39c929e6b9db3373ec1
https://usn.ubuntu.com/usn/usn-4183-1
https://usn.ubuntu.com/usn/usn-4184-1