ELSA-2015-2152 -- Oracle kernel_python-perf_perf
|ID: oval:org.secpod.oval:def:1501253||Date: (C)2016-02-23 (M)2017-10-12|
|Class: PATCH||Family: unix|
The flaws were found in the way the Linux kernel's file system implementation handled rename operations in which the source was inside and the destination was outside of a bind mount. A privileged user inside a container could use this flaw to escape the bind mount and, potentially, escalate their privileges on the system.