1 /* SPDX-License-Identifier: GPL-2.0-only */ 2 3 /** 4 * DOC: erratum_3 5 * 6 * Erratum 3: Disconnected directory handling 7 * ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 8 * 9 * This fix addresses an issue with disconnected directories that occur when a 10 * directory is moved outside the scope of a bind mount. The change ensures 11 * that evaluated access rights include both those from the disconnected file 12 * hierarchy down to its filesystem root and those from the related mount point 13 * hierarchy. This prevents access right widening through rename or link 14 * actions. 15 * 16 * Impact: 17 * 18 * Without this fix, it was possible to widen access rights through rename or 19 * link actions involving disconnected directories, potentially bypassing 20 * ``LANDLOCK_ACCESS_FS_REFER`` restrictions. This could allow privilege 21 * escalation in complex mount scenarios where directories become disconnected 22 * from their original mount points. 23 */ 24 LANDLOCK_ERRATUM(3) 25