The aio_mount function in fs/aio.c in the Linux kernel before 4.7.7 does not properly restrict execute access, which makes it easier for local users to bypass intended SELinux W^X policy restrictions, and consequently gain privileges, via an io_setup system call.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | * | * |
Linux_kernel | Linux | 3.17 | * |
Linux_kernel | Linux | 4.5 | * |