** Description changed: The ovl_setattr function in fs/overlayfs/inode.c in the Linux kernel through 4.3.3 attempts to merge distinct setattr operations, which allows local users to bypass intended access restrictions and modify the attributes of arbitrary overlay files via a crafted application. - Break-Fix: - acff81ec2c79492b180fade3c2894425cd35a545 + Break-Fix: e9be9d5e76e34872f0c37d72e25bc27fe9e2c54c + acff81ec2c79492b180fade3c2894425cd35a545
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1528904 Title: CVE-2015-8660 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1528904/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
