The pivot_root implementation in fs/namespace.c in the Linux kernel up to and including 3.17 does not properly interact with certain locations of a chroot directory, which allows local users to cause a denial of service (mount-tree loop) via . (dot) values in both arguments to the pivot_root system call.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell suse linux enterprise server 11.0 |
||
linux linux kernel |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |