Linux Kernel User Namespace and Mount ID Map Leak Vulnerability in open_tree_attr

Vulnerability

A vulnerability in the Linux kernel has been addressed, involving a leak of user namespace and potentially mount ID map information in the open_tree_attr system call. This issue arises because, after the want_mount_setattr function indicates a positive response, the finish_mount_kattr function is required to release the mount user namespace. However, failing to execute do_mount_setattr does not alter this requirement, leading to an unintentional leak of user namespace and possibly mount ID map data.

Impact

The vulnerability could result in the unintended exposure of user namespace and mount ID map information, which may have implications for namespace isolation and resource management.

Added: Jul 9, 2025, 11:50 AM

Updated: Jul 9, 2025, 11:50 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel User Namespace and Mount ID Map Leak Vulnerability in open_tree_attr

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating