The create_user_ns function in kernel/user_namespace.c in the Linux kernel prior to 3.8.6 does not check whether a chroot directory exists that differs from the namespace root directory, which allows local users to bypass intended filesystem restrictions via a crafted clone system call.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 3.8.2 |
||
linux linux kernel 3.8.0 |
||
linux linux kernel |
||
linux linux kernel 3.8.1 |
||
linux linux kernel 3.8.3 |
||
linux linux kernel 3.8.4 |