CVE-2013-1956

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.8.6

Description The issue allows local users to bypass intended filesystem restrictions. This is due to the create user ns function in kernel/user namespace.c not checking whether a chroot directory exists that differs from the namespace root directory, enabling users to exploit this via a crafted clone system call.

Recommendations For versions prior to 3.8.6, update to version 3.8.6 or later to resolve the issue.