angler-fishThe Vulnerability History Project

[PATCH] FUSE - core

      This patch adds FUSE core.

This contains the following files:

 o inode.c
    - superblock operations (alloc_inode, destroy_inode, read_inode,
      clear_inode, put_super, show_options)
    - registers FUSE filesystem

 o fuse_i.h
    - private header file

Requirements
============

 The most important difference between orinary filesystems and FUSE is
 the fact, that the filesystem data/metadata is provided by a userspace
 process run with the privileges of the mount "owner" instead of the
 kernel, or some remote entity usually running with elevated
 privileges.

 The security implication of this is that a non-privileged user must
 not be able to use this capability to compromise the system.  Obvious
 requirements arising from this are:

  - mount owner should not be able to get elevated privileges with the
    help of the mounted filesystem

  - mount owner should not be able to induce undesired behavior in
    other users' or the super user's processes

  - mo
by Earl the Norwegian Forest 2005-09-09 20:10:26 UTC
commit d8a5ba45457e4a22aa39c939121efd7bb6c76672
Linux Kernel VCC CVE-2020-36322
fs/fuse/Makefile
+7
fs/fuse/fuse_i.h
+89
fs/fuse/inode.c
+428
include/linux/fuse.h
+38
expand_less