The Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10, allows local users to obtain names of files in which they would not normally be able to access via an overlayfs mount inside of a user. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Ubuntu
Linux
Information Disclosure
Linux Kernel
Ubuntu Linux
NVD
CVSS 3.0
3.3
EPSS
0.5%