Fill in status for several issues

author: Ben Hutchings <ben@decadent.org.uk> 2020-11-30 02:09:27 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2020-11-30 02:09:27 +0100
commit: b2dd1ea9e251b15acffc24d82146222000ba38d3 (patch)
tree: c26f4cda2cc01cec73b39aae3f3e477d630bf771 /active/CVE-2020-16120
parent: 852937d5ce830c1fb99188ba4b1157ea02997cbe (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/active/CVE-2020-16120 b/active/CVE-2020-16120
index b8dd4f72..fbf03408 100644
--- a/active/CVE-2020-16120
+++ b/active/CVE-2020-16120
@@ -9,6 +9,9 @@ Notes:
  carnil> hook in ovl_real_ioctl()") might be wanted (see oss-security
  carnil> post).
  carnil> Only exploitable when unprivileged user namespaces are enabled.
+ bwh> I think it's only exploitable when unprivileged user namespace
+ bwh> are enabled, *and* mounting of overlayfs is permitted in all
+ bwh> user namespaces.
 Bugs:
 upstream: released (5.8-rc1) [48bd024b8a40d73ad6b086de2615738da0c7004f, 56230d956739b9cb1cbde439d76227d77979a04d, 05acefb4872dae89e772729efb194af754c877e8]
 4.19-upstream-stable:
author	Ben Hutchings <ben@decadent.org.uk>	2020-11-30 02:09:27 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2020-11-30 02:09:27 +0100
commit	b2dd1ea9e251b15acffc24d82146222000ba38d3 (patch)
tree	c26f4cda2cc01cec73b39aae3f3e477d630bf771 /active/CVE-2020-16120
parent	852937d5ce830c1fb99188ba4b1157ea02997cbe (diff)