CVE-2013-1957

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.8.6

Description The issue concerns the clone mnt function in fs/namespace.c, which does not properly restrict changes to the MNT READONLY flag. This allows local users to bypass the intended read-only property of a filesystem by leveraging a separate mount namespace.

Recommendations For Linux kernel versions prior to 3.8.6, update to version 3.8.6 or later to resolve the issue.