CVE-2021-3732 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Information disclosure
Description	A security issue was found in overlayfs implementation of the Linux kernel before version 5.13.11 where a local attacker with an unprivileged account who has the ability to mount a filesystem can abuse a logic bug in the overlayfs code which can inadvertently reveal files hidden in the original mount.

Group	Package	Affected	Fixed	Severity	Status
AVG-2297	linux-lts	5.10.56-1	5.10.60-1	Medium	Fixed
AVG-2296	linux-zen	5.13.10.zen1-1	5.13.12.zen1-1	Medium	Fixed
AVG-2295	linux	5.13.10.arch1-1	5.13.12.arch1-1	Medium	Fixed
AVG-2234	linux-hardened	5.12.19.hardened1-1	5.13.13.hardened1-1	Medium	Fixed

References
https://bugzilla.redhat.com/show_bug.cgi?id=1995249 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.13.11&id=41812f4b84484530057513478c6770590347dc30 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.59&id=6a002d48a66076524f67098132538bef17e8445e

References

https://bugzilla.redhat.com/show_bug.cgi?id=1995249
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.13.11&id=41812f4b84484530057513478c6770590347dc30
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.59&id=6a002d48a66076524f67098132538bef17e8445e