Ubuntu 5326-1: FUSE vulnerability | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Sign Up
==========================================================================
Ubuntu Security Notice USN-5326-1
March 16, 2022

fuse vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 ESM

Summary:

FUSE is susceptible to a restriction bypass flaw.

Software Description:
- fuse: Filesystem in Userspace

Details:

It was discovered that FUSE is susceptible to a restriction bypass flaw
on a system that has SELinux active. A local attacker with non-root
privileges could mount a FUSE file system that is accessible to other
users and trick them into accessing files on that file system, which
could result in a Denial of Service or other unspecified conditions.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 ESM:
    fuse                             2.9.4-1ubuntu3.1+esm1
    libfuse2                        2.9.4-1ubuntu3.1+esm1

In general, a standard system update will make all the necessary changes.

References:
    https://ubuntu.com/security/notices/USN-5326-1
    CVE-2018-10906

Ubuntu 5326-1: FUSE vulnerability

March 16, 2022
FUSE is susceptible to a restriction bypass flaw.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 ESM Summary: FUSE is susceptible to a restriction bypass flaw. Software Description: - fuse: Filesystem in Userspace Details: It was discovered that FUSE is susceptible to a restriction bypass flaw on a system that has SELinux active. A local attacker with non-root privileges could mount a FUSE file system that is accessible to other users and trick them into accessing files on that file system, which could result in a Denial of Service or other unspecified conditions.

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 ESM: fuse 2.9.4-1ubuntu3.1+esm1 libfuse2 2.9.4-1ubuntu3.1+esm1 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5326-1

CVE-2018-10906

Severity
Ubuntu Security Notice USN-5326-1

Package Information

Related News

PHP Vuln Threatens Confidentiality of Impacted Systems

4 Ways to Use Kernel Security Features for Process Monitoring

News

Advisories

HOWTOs

Features

Is Linux A More Secure Option Than Windows For Businesses?
How Secure Is Linux?
How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation
Best Practices for PHP Security
Why Cloud Linux Is Beneficial for E-Commerce Stores

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy