It was discovered that the overlayfs implementation in the Linux kernel did not properly validate the application of file system capabilities with respect to user namespaces. A local attacker could use this to gain elevated privileges. (CVE-2021-3493)
Vincent Dehors discovered that the shiftfs file system in the Ubuntu Linux kernel did not properly handle faults in copyfromuser() when passing through ioctls to an underlying file system. A local attacker could use this to cause a denial of service (memory exhaustion) or execute arbitrary code. (CVE-2021-3492)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "5.6.0-1054.58", "binary_name": "linux-buildinfo-5.6.0-1054-oem" }, { "binary_version": "5.6.0-1054.58", "binary_name": "linux-headers-5.6.0-1054-oem" }, { "binary_version": "5.6.0-1054.58", "binary_name": "linux-image-unsigned-5.6.0-1054-oem" }, { "binary_version": "5.6.0-1054.58", "binary_name": "linux-image-unsigned-5.6.0-1054-oem-dbgsym" }, { "binary_version": "5.6.0-1054.58", "binary_name": "linux-modules-5.6.0-1054-oem" }, { "binary_version": "5.6.0-1054.58", "binary_name": "linux-oem-5.6-headers-5.6.0-1054" }, { "binary_version": "5.6.0-1054.58", "binary_name": "linux-oem-5.6-tools-5.6.0-1054" }, { "binary_version": "5.6.0-1054.58", "binary_name": "linux-oem-5.6-tools-host" }, { "binary_version": "5.6.0-1054.58", "binary_name": "linux-tools-5.6.0-1054-oem" } ] }