CVE-2025-38499
clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns
References
Notes
carnil> Introduced in 427215d85e8d ("ovl: prevent private clone if bind mount is not
carnil> allowed"). Vulnerable versions: 4.4.281 4.9.280 4.14.244 4.19.204 5.4.141
carnil> 5.10.59 5.13.11 5.14-rc6.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.16-rc1) [c28f922c9dcee0e4876a2c095939d77fe7e15116]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.15-upstream-stable |
released (6.15.3) [38628ae06e2a37770cd794802a3f1310cf9846e3]
|
| 6.12-upstream-stable |
released (6.12.40) [e77078e52fbf018ab986efb3c79065ab35025607]
|
| 6.6-upstream-stable |
released (6.6.100) [dc6a664089f10eab0fb36b6e4f705022210191d2]
|
| 6.1-upstream-stable |
released (6.1.147) [d717325b5ecf2a40daca85c61923e17f32306179]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.16.3-1)
|
| 6.12-trixie-security |
released (6.12.41-1)
|
| 6.1-bookworm-security |
released (6.1.147-1)
|
| 5.10-bullseye-security |
needed
|
