An attacker with a low-privileged user on a Linux machine before kernel version 5.14.12 with an overlay mount can escalate his privileges up to root when performing rename in specific way with this overlayfs.
An attacker with a low-privileged user on a Linux machine before kernel version 5.14.12 with an overlay mount can escalate his privileges up to root when performing rename in specific way with this overlayfs.
https://bugzilla.redhat.com/show_bug.cgi?id=2013242 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.14.12&id=71b8b36187af58f9e67b25021f5debbc04a18a5d https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.73&id=9763ffd4da217adfcbdcd519e9f434dfa3952fc3