CVE-2018-16597
First published: Fri Sep 21 2018(Updated: )
An issue was discovered in the Linux kernel before 4.8. Incorrect access checking in overlayfs mounts could be used by local attackers to modify or truncate files in the underlying filesystem.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <4.8 | |
| NetApp Active IQ | ||
| NetApp Element OS | ||
| SUSE Linux | =42.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00033.html
- http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
- http://www.securityfocus.com/bid/105394
- https://bugzilla.suse.com/show_bug.cgi?id=1106512
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c0ca3d70e8d3cf81e2255a217f7ca402f5ed0862
- https://seclists.org/bugtraq/2019/Jul/33
- https://security.netapp.com/advisory/ntap-20190204-0001/
- https://support.f5.com/csp/article/K22691834
Frequently Asked Questions
What is the severity of CVE-2018-16597?
CVE-2018-16597 has a medium severity rating due to potential local privilege escalation.
How do I fix CVE-2018-16597?
To fix CVE-2018-16597, update the Linux kernel to version 4.8 or later.
Who is affected by CVE-2018-16597?
CVE-2018-16597 affects versions of the Linux kernel prior to 4.8 and certain NetApp products.
What are the implications of CVE-2018-16597 for local attackers?
Local attackers can exploit CVE-2018-16597 to gain unauthorized access to files on the underlying filesystem.
What systems are at risk from CVE-2018-16597?
Systems running vulnerable versions of the Linux kernel, as well as some NetApp software, are at risk from CVE-2018-16597.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/linux
- canonical/linux kernel
- vendor/netapp
- canonical/netapp active iq
- canonical/netapp element os
- vendor/opensuse
- canonical/suse linux
- version/suse linux/42.3