CVE-2021-3847

HIGH

Linux Kernel OverlayFS - Privilege Escalation

Title source: llm

Description

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system.

References (2)

[Issue Tracking, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=2009704

[Mailing List, Third Party Advisory] https://www.openwall.com/lists/oss-security/2021/10/14/3

Scores

CVSS v3 7.8

EPSS 0.0003

EPSS Percentile 8.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-281

Status published

Products (2)

fedoraproject/fedora 34

linux/linux_kernel < 5.17.0

Published Apr 01, 2022

Tracked Since Feb 18, 2026