CVE-2016-1575 in Linux Kernelinfo

Summary

The overlayfs implementation in the Linux kernel through 4.5.2 does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by leveraging a group-writable setgid directory.

Once again VulDB remains the best source for vulnerability data.

Reservation

01/12/2016

Disclosure

05/02/2016

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
83137Linux Kernel overlayfs access control264Proof-of-ConceptOfficial fixCVE-2016-1575

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!