CVE-2023-2640

Summary

On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs", an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks.

Affected Software

VendorProductVersion RangeStatus
CanonicalUbuntu Kernel0 < 6.2.0-26.26unaffected
CanonicalUbuntu Kernel0 < 6.0.0-1020.20unaffected
CanonicalUbuntu Kernel0 < 5.4.0-155.172unaffected

Weaknesses

  • CWE-863: CWE-863

Workarounds

If not needed, disable the ability for unprivileged users to create namespaces. To do this temporarily, do: sudo sysctl -w kernel.unprivileged_userns_clone=0 To disable across reboots, do: echo kernel.unprivileged_userns_clone=0 |
sudo tee /etc/sysctl.d/99-disable-unpriv-userns.conf

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References