Skip to content

OverlayFS userns capability privesc (CVE-2021-3493)

Aynı bug/CVE: bkz. canonical overlayfs privilege escalation (CVE-2021-3493).

Mechanism

Bu not, canonical ile aynı root cause'u tarif eder: Ubuntu'nun FS_USERNS_MOUNT patch'i + capability re-validation eksikliği. Tam mekanizma için bkz. overlayfs privilege escalation (CVE-2021-3493).

Walkthrough

Tam walkthrough canonical not'ta: overlayfs privilege escalation (CVE-2021-3493).

References