MNBSD-2021-5: Jail escape via race between ".." lookup and remount

Severity: Unknown

Affected Package: kernel

Summary: Jail escape via race between ".." lookup and remount

Description

Due to a race condition between lookup of ".." and remounting a file system, a jailed process with superuser privileges and the allow.mount permission could access the filesystem hierarchy outside of the jail, gaining read and write access to files and directories on the host.

Affected Versions

kernel

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2020-25584

Published: April 06, 2021
Last Modified: April 06, 2021