Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Ubuntu 16.04 ESM: USN-5326-1 Critical: FUSE Restriction Bypass

Calendar Mar 16, 2022 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service critical ubuntu bypass fuse
FUSE is susceptible to a restriction bypass flaw. 
=========================================================================Ubuntu Security Notice USN-5326-1
March 16, 2022

fuse vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 ESM

Summary:

FUSE is susceptible to a restriction bypass flaw.

Software Description:
- fuse: Filesystem in Userspace

Details:

It was discovered that FUSE is susceptible to a restriction bypass flaw
on a system that has SELinux active. A local attacker with non-root
privileges could mount a FUSE file system that is accessible to other
users and trick them into accessing files on that file system, which
could result in a Denial of Service or other unspecified conditions.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 ESM:
    fuse                             2.9.4-1ubuntu3.1+esm1
    libfuse2                        2.9.4-1ubuntu3.1+esm1

In general, a standard system update will make all the necessary changes.

References:
        CVE-2018-10906

Ubuntu 16.04 ESM: USN-5326-1 Critical: FUSE Restriction Bypass

ubuntu
Calendar Grey March 16, 2022
Dist Ubuntu Esm H88
The Ubuntu Security Announcement USN-5326-1 details a vulnerability in the FUSE restriction bypass, providing essential update directives for impacted versions.
FUSE is susceptible to a restriction bypass flaw.

Summary

Topics%20covered

Topics Covered

security advisory denial of service critical ubuntu bypass fuse

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 ESM: fuse 2.9.4-1ubuntu3.1+esm1 libfuse2 2.9.4-1ubuntu3.1+esm1 In general, a standard system update will make all the necessary changes.

References

CVE-2018-10906

Severity
critical
Lowest
Low
Medium
High
Critical

March 16, 2022

Topics%20covered

Topics Covered

security advisory denial of service critical ubuntu bypass fuse

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here