An issue was discovered in fs/io_uring.c in the Linux kernel before 5.6. It unsafely handles the root directory during path lookups, and thus a process inside a mount namespace can escape to unintended filesystem locations, aka CID-ff002b30181d. CREATE(Triage):(User=admin) [CVE-2020-29373|https://nvd.nist.gov/vuln/detail/CVE-2020-29373]