CVE-2016-2853

Published: May 2, 2016Modified: May 6, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program.

Affected (2)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 3.0.0 to 3.19.8
Linux Linux Kernel	From 4.0.0 to 4.20.15

Related CWEs

CWE-269

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (10)

http://www.halfdog.net/Security/2016/AufsPrivilegeEscalationInUserNamespaces/

Source: cve@mitre.org

ExploitThird Party Advisory

http://www.openwall.com/lists/oss-security/2016/02/24/9

Source: cve@mitre.org

ExploitMailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2021/10/18/1

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://www.securityfocus.com/bid/96839

Source: cve@mitre.org

Broken Link

https://sourceforge.net/p/aufs/mailman/message/34864744/

Source: cve@mitre.org

Third Party Advisory

http://www.halfdog.net/Security/2016/AufsPrivilegeEscalationInUserNamespaces/