An issue was discovered in the Linux kernel before 4.8. Incorrect access checking in overlayfs mounts could be used by local attackers to modify or truncate files in the underlying filesystem.
https://support.f5.com/csp/article/K22691834
https://security.netapp.com/advisory/ntap-20190204-0001/
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c0ca3d70e8d3cf81e2255a217f7ca402f5ed0862
https://bugzilla.suse.com/show_bug.cgi?id=1106512
http://www.securityfocus.com/bid/105394
http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00033.html
https://seclists.org/bugtraq/2019/Jul/33
http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
Source: Mitre, NVD
Published: 2018-09-21
Updated: 2024-11-21
Base Score: 4.9
Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N
Severity: Medium
Base Score: 5.5
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
EPSS: 0.00101