UBUNTU-CVE-2026-33150

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2026-33150

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-33150

Upstream

CVE-2026-33150

Withdrawn

2026-03-30T16:16:02Z

Published

2026-03-20T21:17:00Z

Modified

2026-03-30T18:00:05.714721Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

libfuse is the reference implementation of the Linux FUSE. From version 3.18.0 to before version 3.18.2, a use-after-free vulnerability in the iouring subsystem of libfuse allows a local attacker to crash FUSE filesystem processes and potentially execute arbitrary code. When iouring thread creation fails due to resource exhaustion (e.g., cgroup pids.max), fuseuringstart() frees the ring pool structure but stores the dangling pointer in the session state, leading to a use-after-free when the session shuts down. The trigger is reliable in containerized environments where cgroup pids.max limits naturally constrain thread creation. This issue has been patched in version 3.18.2.

References

Affected packages

Ubuntu:14.04:LTS

fuse

Package

Name: fuse
Purl: pkg:deb/ubuntu/fuse@2.9.2-4ubuntu4.14.04.1?arch=source&distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.9.2-4ubuntu3

2.9.2-4ubuntu4

2.9.2-4ubuntu4.14.04.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2.9.2-4ubuntu4.14.04.1",
            "binary_name": "fuse"
        },
        {
            "binary_version": "2.9.2-4ubuntu4.14.04.1",
            "binary_name": "libfuse-dev"
        },
        {
            "binary_version": "2.9.2-4ubuntu4.14.04.1",
            "binary_name": "libfuse2"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

Ubuntu:18.04:LTS

fuse

Package

Name: fuse
Purl: pkg:deb/ubuntu/fuse@2.9.7-1ubuntu1?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.9.7-1ubuntu1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2.9.7-1ubuntu1",
            "binary_name": "fuse"
        },
        {
            "binary_version": "2.9.7-1ubuntu1",
            "binary_name": "libfuse-dev"
        },
        {
            "binary_version": "2.9.7-1ubuntu1",
            "binary_name": "libfuse2"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

Ubuntu:20.04:LTS

fuse

Package

Name: fuse
Purl: pkg:deb/ubuntu/fuse@2.9.9-3?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.9.9-1ubuntu1

2.9.9-2

2.9.9-3

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2.9.9-3",
            "binary_name": "fuse"
        },
        {
            "binary_version": "2.9.9-3",
            "binary_name": "libfuse-dev"
        },
        {
            "binary_version": "2.9.9-3",
            "binary_name": "libfuse2"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

fuse3

Package

Name: fuse3
Purl: pkg:deb/ubuntu/fuse3@3.9.0-2?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.4.1-1

3.7.0-1

3.9.0-1

3.9.0-2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "3.9.0-2",
            "binary_name": "fuse3"
        },
        {
            "binary_version": "3.9.0-2",
            "binary_name": "libfuse3-3"
        },
        {
            "binary_version": "3.9.0-2",
            "binary_name": "libfuse3-dev"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

Ubuntu:22.04:LTS

fuse

Package

Name: fuse
Purl: pkg:deb/ubuntu/fuse@2.9.9-5ubuntu3?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.9.9-5ubuntu2

2.9.9-5ubuntu3

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2.9.9-5ubuntu3",
            "binary_name": "fuse"
        },
        {
            "binary_version": "2.9.9-5ubuntu3",
            "binary_name": "libfuse-dev"
        },
        {
            "binary_version": "2.9.9-5ubuntu3",
            "binary_name": "libfuse2"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

fuse3

Package

Name: fuse3
Purl: pkg:deb/ubuntu/fuse3@3.10.5-1build1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.10.3-2

3.10.5-1

3.10.5-1build1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "3.10.5-1build1",
            "binary_name": "fuse3"
        },
        {
            "binary_version": "3.10.5-1build1",
            "binary_name": "libfuse3-3"
        },
        {
            "binary_version": "3.10.5-1build1",
            "binary_name": "libfuse3-dev"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

Ubuntu:24.04:LTS

fuse

Package

Name: fuse
Purl: pkg:deb/ubuntu/fuse@2.9.9-8.1build1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.9.9-6

2.9.9-8

2.9.9-8.1

2.9.9-8.1build1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2.9.9-8.1build1",
            "binary_name": "fuse"
        },
        {
            "binary_version": "2.9.9-8.1build1",
            "binary_name": "libfuse-dev"
        },
        {
            "binary_version": "2.9.9-8.1build1",
            "binary_name": "libfuse2t64"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

fuse3

Package

Name: fuse3
Purl: pkg:deb/ubuntu/fuse3@3.14.0-5build1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.14.0-4

3.14.0-5

3.14.0-5build1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "3.14.0-5build1",
            "binary_name": "fuse3"
        },
        {
            "binary_version": "3.14.0-5build1",
            "binary_name": "libfuse3-3"
        },
        {
            "binary_version": "3.14.0-5build1",
            "binary_name": "libfuse3-dev"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

Ubuntu:25.10

fuse

Package

Name: fuse
Purl: pkg:deb/ubuntu/fuse@2.9.9-9?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.9.9-9

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2.9.9-9",
            "binary_name": "libfuse-dev"
        },
        {
            "binary_version": "2.9.9-9",
            "binary_name": "libfuse2t64"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

fuse3

Package

Name: fuse3
Purl: pkg:deb/ubuntu/fuse3@3.17.4-1?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.14.0-10

3.17.2-2

3.17.2-3

3.17.4-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "3.17.4-1",
            "binary_name": "fuse"
        },
        {
            "binary_version": "3.17.4-1",
            "binary_name": "fuse3"
        },
        {
            "binary_version": "3.17.4-1",
            "binary_name": "libfuse3-4"
        },
        {
            "binary_version": "3.17.4-1",
            "binary_name": "libfuse3-dev"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"

Ubuntu:Pro:16.04:LTS

fuse

Package

Name: fuse
Purl: pkg:deb/ubuntu/fuse@2.9.4-1ubuntu3.1+esm1?arch=source&distro=esm-infra/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.9.4-1ubuntu1

2.9.4-1ubuntu2

2.9.4-1ubuntu3

2.9.4-1ubuntu3.1

2.9.4-1ubuntu3.1+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2.9.4-1ubuntu3.1+esm1",
            "binary_name": "fuse"
        },
        {
            "binary_version": "2.9.4-1ubuntu3.1+esm1",
            "binary_name": "libfuse-dev"
        },
        {
            "binary_version": "2.9.4-1ubuntu3.1+esm1",
            "binary_name": "libfuse2"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-33150.json"