cve

CVE-2021-3493 GITLAB HIGH

2021 Ubuntu Overlayfs LPE

The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a patch carried in the Ubuntu kernel to allow unprivileged overlay mounts, an attacker could use this to gain elevated privileges.

CVSS 8.8

View Code

CVE-2021-3156 GITLAB HIGH

Sudo Heap-Based Buffer Overflow

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

CVSS 7.8

View Code