CVE-2024-26821

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability has been resolved in the Linux kernel related to the mount setattr() function, which had stricter permission checks compared to the legacy do reconfigure mnt() and do change type() helpers. The issue arose because the real rootfs does not fit into the categories of anonymous mounts or mounts with a parent, causing mount setattr(2) to block changes to mount properties on the real rootfs, whereas legacy mount(2) allowed such changes. This issue was surfaced when util-linux switched to the new mount API in version 2.39.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.