From b2dd1ea9e251b15acffc24d82146222000ba38d3 Mon Sep 17 00:00:00 2001
From: Ben Hutchings <ben@decadent.org.uk>
Date: Mon, 30 Nov 2020 02:09:27 +0100
Subject: Fill in status for several issues

---
 active/CVE-2020-16120 | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'active/CVE-2020-16120')

diff --git a/active/CVE-2020-16120 b/active/CVE-2020-16120
index b8dd4f72..fbf03408 100644
--- a/active/CVE-2020-16120
+++ b/active/CVE-2020-16120
@@ -9,6 +9,9 @@ Notes:
  carnil> hook in ovl_real_ioctl()") might be wanted (see oss-security
  carnil> post).
  carnil> Only exploitable when unprivileged user namespaces are enabled.
+ bwh> I think it's only exploitable when unprivileged user namespace
+ bwh> are enabled, *and* mounting of overlayfs is permitted in all
+ bwh> user namespaces.
 Bugs:
 upstream: released (5.8-rc1) [48bd024b8a40d73ad6b086de2615738da0c7004f, 56230d956739b9cb1cbde439d76227d77979a04d, 05acefb4872dae89e772729efb194af754c877e8]
 4.19-upstream-stable:
-- 
cgit v1.2.3