CVE-2014-9922

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.18

Description The issue is related to the eCryptfs subsystem in the Linux kernel, which allows local users to gain privileges via a large filesystem stack that includes an overlayfs layer. This is related to the files fs/ecryptfs/main.c and fs/overlayfs/super.c. The vulnerability is also described as being related to insufficient access control in the eCryptfs subsystem, which can be exploited by an attacker to elevate their privileges.

Recommendations For Linux kernel versions prior to 3.18, update to version 3.18 or later to resolve the issue. As a temporary workaround, consider restricting access to the overlayfs layer to minimize the risk of exploitation. Avoid using large filesystem stacks that include an overlayfs layer until the issue is resolved.