oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request: overlayfs

From: Kurt Seifried <kseifried () redhat com>
Date: Tue, 17 Jan 2012 14:03:53 -0700
On 01/17/2012 10:55 AM, Marc Deslauriers wrote:

Could we please get a CVE assigned to the following issue:

overlayfs, as used in the Ubuntu kernel, doesn't perform required inode
security checks, bypassing intended security restrictions.

Bug:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/915941

Upstream source:
git://git.kernel.org/pub/scm/linux/kernel/git/mszeredi/vfs.git

Thanks,

Marc.



Please use CVE-2012-0055 for this issue.

-- 

-- Kurt Seifried / Red Hat Security Response Team
Previous By Date Next
Previous By Thread Next

Current thread: