Bug 1632443 (CVE-2018-16597) - CVE-2018-16597 kernel: overlayfs file truncation without permissions
Summary: CVE-2018-16597 kernel: overlayfs file truncation without permissions
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2018-16597
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1361590 1632444 1632445 1638097 1641718
Blocks: 1632446
TreeView+ depends on / blocked
 
Reported: 2018-09-24 20:05 UTC by Pedro Sampaio
Modified: 2021-02-16 23:00 UTC (History)
49 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2018-10-10 16:46:39 UTC
Embargoed:

Attachments (Terms of Use)

Description Pedro Sampaio 2018-09-24 20:05:55 UTC 
An issue was discovered in the Linux kernel where an incorrect access checking in overlayfs mounts could be used by local attackers to modify or truncate files in the underlying filesystem.

References:

https://bugzilla.suse.com/show_bug.cgi?id=1106512

An upstream patch:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c0ca3d70e8d3cf81e2255a217f7ca402f5ed0862
Comment 1 Pedro Sampaio 2018-09-24 20:07:31 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1632445]
Comment 8 Vladis Dronov 2018-10-22 15:12:57 UTC 
this was fixed in RHEL-7.3 by bz1361590 and by the errata:

https://access.redhat.com/errata/RHSA-2016:2574
Note You need to log in before you can comment on or make changes to this bug.