VDB
CNVD-2021-29853
CNVD-2021-29853
PUBLISHED
CVSS 8.800000190734863 HIGH
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 linux kernel 存在安全漏洞,该漏洞源于非特权用户名称空间和Ubuntu内核中允许非特权覆盖的补丁的组合,攻击者可利用该漏洞获得更高的特权。
Risk Scores
CVSS v3.1
8.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu | linux kernel | 5.8 kernel, 4.15 kernel, * |
Timeline
- Nov 2, 2020 CVE Published
- Dec 2, 2021 PoC Published
- Jun 14, 2023 PoC Published
- Mar 1, 2024 PoC Published
- Mar 1, 2024 PoC Published
- Apr 23, 2024 PoC Published
- May 19, 2024 PoC Published
- Jul 17, 2024 PoC Published
- Sep 6, 2024 PoC Published
- Dec 24, 2024 PoC Published
- Feb 6, 2025 PoC Published
- Feb 23, 2025 PoC Published
References
- https://ubuntu.com/security/notices/USN-4917-1 url
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7c03e2cda4a584cadc398e8f6641ca9988a39d52 url
- https://www.openwall.com/lists/oss-security/2021/04/16/1 url
- http://packetstormsecurity.com/files/162434/Kernel-Live-Patch-Security-Notice-LSN-0076-1.html url
- http://packetstormsecurity.com/files/162866/Ubuntu-OverlayFS-Local-Privilege-Escalation.html url
- http://packetstormsecurity.com/files/165151/Ubuntu-Overlayfs-Local-Privilege-Escalation.html url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-3493 url