Denial of Service Vulnerability in Linux Kernel's OverlayFS Filesystem Layer

Denial of Service Vulnerability in Linux Kernel's OverlayFS Filesystem Layer

CVE-2016-6198 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

The filesystem layer in the Linux kernel before 4.5.5 proceeds with post-rename operations after an OverlayFS file is renamed to a self-hardlink, which allows local users to cause a denial of service (system crash) via a rename system call, related to fs/namei.c and fs/open.c.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.