Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks when calling ovl_do_setxattr on Ubuntu kernels

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.62699.

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

Vendors Products
Canonical
  • Ubantu Kernel
  • Ubuntu Linux

Configuration 1 [-]

cpe:2.3:o:canonical:ubuntu_linux:23.04:*:*:*:*:*:*:*

No data.

No data.

Advisories
Source ID Title
Ubuntu USN Ubuntu USN USN-6248-1 Linux kernel (OEM) vulnerabilities
Ubuntu USN Ubuntu USN USN-6250-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-6251-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-6260-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-6261-1 Linux kernel (IoT) vulnerabilities
Ubuntu USN Ubuntu USN USN-6285-1 Linux kernel (OEM) vulnerabilities
Fixes

Solution

No solution given by the vendor.

Workaround

If not needed, disable the ability for unprivileged users to create namespaces. To do this temporarily, do: sudo sysctl -w kernel.unprivileged_userns_clone=0 To disable across reboots, do: echo kernel.unprivileged_userns_clone=0 | \ sudo tee /etc/sysctl.d/99-disable-unpriv-userns.conf

References
Link Providers
http://packetstormsecurity.com/files/174577/Kernel-Live-Patch-Security-Notice-LSN-0097-1.html cve-icon cve-icon
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32629 cve-icon cve-icon
https://lists.ubuntu.com/archives/kernel-team/2023-July/140920.html cve-icon cve-icon cve-icon
https://lists.ubuntu.com/archives/kernel-team/2023-July/140923.html cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-32629 cve-icon
https://ubuntu.com/security/notices/USN-6250-1 cve-icon cve-icon
https://wiz.io/blog/ubuntu-overlayfs-vulnerability cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-32629 cve-icon
https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability cve-icon
History

Wed, 23 Oct 2024 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Canonical ubantu Kernel
CPEs cpe:2.3:o:canonical:ubantu_kernel:*:*:*:*:*:*:*:*
Vendors & Products Canonical ubantu Kernel
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}
cve-icon MITRE

Status: PUBLISHED

Assigner: canonical

Published:

Updated: 2025-02-13T16:54:52.620Z

Reserved: 2023-06-29T21:43:35.022Z

Link: CVE-2023-32629

cve-icon Vulnrichment

Updated: 2024-08-02T15:25:36.941Z

cve-icon NVD

Status : Modified

Published: 2023-07-26T02:15:09.413

Modified: 2024-11-21T08:03:44.193

Link: CVE-2023-32629

cve-icon Redhat

Severity : Important

Publid Date: 2023-07-06T00:00:00Z

Links: CVE-2023-32629 - Bugzilla

cve-icon OpenCVE Enrichment

No data.