[Devel] [PATCH rh7 0/4] overlayfs: missing detection of hardlinks in vfs_rename() on overlayfs
Maxim Patlasov
mpatlasov at virtuozzo.com
Tue Jul 26 18:05:42 PDT 2016
As rightly explained in CVE-2016-6198
(https://bugzilla.redhat.com/show_bug.cgi?id=1355654):
> It was found that the vfs_rename() function did not detect hard links on
> overlayfs. A local, unprivileged user could use the rename syscall on
> overlayfs on top of xfs to crash the system.
The series backport necessary bits from upstream to fix it.
---
Maxim Patlasov (4):
VFS: Introduce inode-getting helpers for layered/unioned fs environments
overlayfs: introduce d_select_inode dentry operation
vfs: add vfs_select_inode() helper
vfs: rename: check backing inode being equal
fs/dcache.c | 5 +++
fs/namei.c | 6 +++-
fs/overlayfs/inode.c | 15 ++++++++++
fs/overlayfs/overlayfs.h | 1 +
fs/overlayfs/super.c | 2 +
include/linux/dcache.h | 69 ++++++++++++++++++++++++++++++++++++++++++++++
6 files changed, 96 insertions(+), 2 deletions(-)
--
Signature
More information about the Devel
mailing list