CVE-2016-7118

Name of the Vulnerable Software and Affected Versions linux-image package version 3.2.0-4 (kernel 3.2.81-1)

Description The issue is related to the mishandling of F SETFL fcntl calls on directories in the fs/fcntl.c file of the "aufs 3.2.x+setfl-debian" patch. This can be exploited by local users to cause a denial of service, resulting in a NULL pointer dereference and system crash, through standard filesystem operations.

Recommendations For linux-image package version 3.2.0-4 (kernel 3.2.81-1), consider applying a patch to fix the issue in the fs/fcntl.c file to prevent the NULL pointer dereference and system crash. At the moment, there is no information about a newer version that contains a fix for this vulnerability.