As rightly explained in CVE-2016-6198
(https://bugzilla.redhat.com/show_bug.cgi?id=1355654):
> It was found that the vfs_rename() function did not detect hard links on
> overlayfs. A local, unprivileged user could use the rename syscall on
> overlayfs on top of xfs to crash the system.
The series backport necessary bits from upstream to fix it.
---
Maxim Patlasov (4):
VFS: Introduce inode-getting helpers for layered/unioned fs environments
overlayfs: introduce d_select_inode dentry operation
vfs: add vfs_select_inode() helper
vfs: rename: check backing inode being equal
fs/dcache.c | 5 +++
fs/namei.c | 6 +++-
fs/overlayfs/inode.c | 15 ++++++++++
fs/overlayfs/overlayfs.h | 1 +
fs/overlayfs/super.c | 2 +
include/linux/dcache.h | 69 ++++++++++++++++++++++++++++++++++++++++++++++
6 files changed, 96 insertions(+), 2 deletions(-)
--
Signature
_______________________________________________
Devel mailing list
[email protected]
https://lists.openvz.org/mailman/listinfo/devel
