CVE-2015-8952

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.6

Description The issue is related to the mbcache feature in the ext2 and ext4 filesystem implementations. It mishandles xattr block caching, allowing local users to cause a denial of service (soft lockup) via filesystem operations in environments that use many attributes. This is demonstrated by systems using Ceph and Samba.

Recommendations For Linux kernel versions prior to 4.6, update to version 4.6 or later to resolve the issue. As a temporary workaround, consider restricting the use of many attributes in filesystem operations to minimize the risk of exploitation.