Denial of Service Vulnerability in Linux Kernel's OverlayFS Copy-Up Operation

Denial of Service Vulnerability in Linux Kernel's OverlayFS Copy-Up Operation

CVE-2015-8953 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

fs/overlayfs/copy_up.c in the Linux kernel before 4.2.6 uses an incorrect cleanup code path, which allows local users to cause a denial of service (dentry reference leak) via filesystem operations on a large file in a lower overlayfs layer.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.