Privilege Escalation Vulnerability in OverlayFS on Linux Kernel by The Linux Foundation
CVE-2016-1576
7.8HIGH
What is CVE-2016-1576?
The OverlayFS implementation in the Linux kernel up to version 4.5.2 has a flaw that fails to appropriately restrict the mount namespace. This weakness allows local users to potentially gain elevated privileges. By mounting an OverlayFS filesystem atop a FUSE filesystem and executing a crafted setuid program, attackers can exploit this vulnerability to escalate their privileges.