A vulnerability was found in Linux Kernel, where a reference count underflow was discovered in the shiftfs implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Reference: http://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-15791.html
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1801617]
Shiftfs is not upstream, and is currently an Ubuntu specific patch set. This has never impacted any Fedora products.
The fs/shiftfs.c file affected by this flaw is also not present in RHEL.
Statement: No current shipping products include the code necessary to fix this issue.
Mitigation: Mitigation of this flaw is not necessary on Red Hat Enterprise Linux and layered products.