CVE-2014-9717

2016-05-02T10:59:00
ID CVE-2014-9717
Type cve
Reporter cve@mitre.org
Modified 2016-08-12T01:59:00

Description

fs/namespace.c in the Linux kernel before 4.0.2 processes MNT_DETACH umount2 system calls without verifying that the MNT_LOCKED flag is unset, which allows local users to bypass intended access restrictions and navigate to filesystem locations beneath a mount by calling umount2 within a user namespace.