Lucene search

K

MitreCVELIST:CVE-2016-6197

HistoryAug 06, 2016 - 8:00 p.m.

CVE-2016-6197

2016-08-0620:00:00

mitre

www.cve.org

2

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.1%

fs/overlayfs/dir.c in the OverlayFS filesystem implementation in the Linux kernel before 4.6 does not properly verify the upper dentry before proceeding with unlink and rename system-call processing, which allows local users to cause a denial of service (system crash) via a rename system call that specifies a self-hardlink.

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=11f3710417d026ea2f4fcf362d866342c5274185

rhn.redhat.com/errata/RHSA-2016-1847.html

rhn.redhat.com/errata/RHSA-2016-1875.html

www.openwall.com/lists/oss-security/2016/07/11/8

www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

www.securityfocus.com/bid/91709

www.securitytracker.com/id/1036273

www.ubuntu.com/usn/USN-3070-1

www.ubuntu.com/usn/USN-3070-2

www.ubuntu.com/usn/USN-3070-3

www.ubuntu.com/usn/USN-3070-4

bugzilla.redhat.com/show_bug.cgi?id=1355650

github.com/torvalds/linux/commit/11f3710417d026ea2f4fcf362d866342c5274185

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.1%

Related for CVELIST:CVE-2016-6197

cve1 prion1 redhatcve1 nvd1 debiancve1 ubuntucve1 nessus15 oraclelinux2 centos1 redhat2 ubuntu4 openvas7