Launchpad CVE tracker

CVE 2018-16597

An issue was discovered in the Linux kernel before 4.8. Incorrect access checking in overlayfs mounts could be used by local attackers to modify or truncate files in the underlying filesystem.

Related bugs and status

CVE-2018-16597 (Candidate) is related to these bugs:

Bug #1793458: Overlayfs in user namespace leaks directory content of inaccessible directories

		In	Importance	Status
1793458	Overlayfs in user namespace leaks directory content of inaccessible directories	linux (Ubuntu)	Medium	Fix Released
1793458	Overlayfs in user namespace leaks directory content of inaccessible directories	linux (Ubuntu Bionic)	Medium	Fix Released
1793458	Overlayfs in user namespace leaks directory content of inaccessible directories	linux (Ubuntu Disco)	Medium	Fix Released
1793458	Overlayfs in user namespace leaks directory content of inaccessible directories	linux (Ubuntu Cosmic)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2018-16597

References