Difference between revisions of "Template:News English"
From PwnWiki
(Created page with "*[https://thehackernews.com/2021/03/latest-f5-big-ip-bug-under-active.html Critical F5 BIG-IP Bug Under Active Attacks After PoC Exploit Posted Online] *[https://thehackernews...") |
|||
| Line 1: | Line 1: | ||
| − | + | ===[https://www.pwnwiki.org/index.php?title=CVE-2021-3493_linux_kernel_%E7%89%B9%E6%AC%8A%E6%8F%90%E5%8D%87%E6%BC%8F%E6%B4%9E CVE-2021-3493]=== | |
| − | + | <strong>The OverlayFS vulnerability allows local users under Ubuntu to gain root privileges. An Ubuntu specific issue in the overlayfs file system in the Linux kernel, in which it did not correctly validate the application regarding the file system function of the user namespace. Since Ubuntu comes with a patch that allows unprivileged overlayfs to mount, local attackers can use it to gain higher privileges.</strong> | |
| − | + | [[File:Ubuntu-logo32.png |right | 100px]] | |
| − | + | ====Affected version==== | |
| − | * | + | <pre> |
| + | Ubuntu 20.10 | ||
| + | Ubuntu 20.04 LTS | ||
| + | Ubuntu 18.04 LTS | ||
| + | Ubuntu 16.04 LTS | ||
| + | Ubuntu 14.04 ESM | ||
| + | </pre> | ||
| + | ====Repair suggestions==== | ||
| + | *Update system package version | ||
| + | *Update the Linux kernel to 5.11 | ||
Latest revision as of 09:06, 15 May 2021
CVE-2021-3493
The OverlayFS vulnerability allows local users under Ubuntu to gain root privileges. An Ubuntu specific issue in the overlayfs file system in the Linux kernel, in which it did not correctly validate the application regarding the file system function of the user namespace. Since Ubuntu comes with a patch that allows unprivileged overlayfs to mount, local attackers can use it to gain higher privileges.
Affected version
Ubuntu 20.10 Ubuntu 20.04 LTS Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 ESM
Repair suggestions
- Update system package version
- Update the Linux kernel to 5.11
