An issue was discovered in the Linux kernel before 4.8. Incorrect access checking in overlayfs mounts could be used by local attackers to modify or truncate files in the underlying filesystem.
http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00033.html
http://www.securityfocus.com/bid/105394
https://bugzilla.suse.com/show_bug.cgi?id=1106512
https://seclists.org/bugtraq/2019/Jul/33
Source: MITRE
Published: 2018-09-21
Updated: 2019-10-03
Type: CWE-863
Base Score: 4.9
Vector: AV:L/AC:L/Au:N/C:N/I:C/A:N
Impact Score: 6.9
Exploitability Score: 3.9
Severity: MEDIUM
Base Score: 5.5
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Impact Score: 3.6
Exploitability Score: 1.8
Severity: MEDIUM