Vulnerability Description
The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 3.0.0, <= 3.19.8 |
Related Weaknesses (CWE)
References
- http://www.halfdog.net/Security/2016/AufsPrivilegeEscalationInUserNamespaces/ExploitThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/02/24/9ExploitMailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2021/10/18/1Mailing ListThird Party Advisory
- http://www.securityfocus.com/bid/96839Broken Link
- https://sourceforge.net/p/aufs/mailman/message/34864744/Third Party Advisory
- http://www.halfdog.net/Security/2016/AufsPrivilegeEscalationInUserNamespaces/ExploitThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/02/24/9ExploitMailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2021/10/18/1Mailing ListThird Party Advisory
- http://www.securityfocus.com/bid/96839Broken Link
- https://sourceforge.net/p/aufs/mailman/message/34864744/Third Party Advisory
FAQ
What is CVE-2016-2853?
CVE-2016-2853 is a vulnerability with a CVSS score of 7.8 (HIGH). The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs filesystem on top of a FUSE filesystem,...
How severe is CVE-2016-2853?
CVE-2016-2853 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-2853?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.