{"id":"CVE-2014-7970","details":"The pivot_root implementation in fs/namespace.c in the Linux kernel through 3.17 does not properly interact with certain locations of a chroot directory, which allows local users to cause a denial of service (mount-tree loop) via . (dot) values in both arguments to the pivot_root system call.","modified":"2026-04-16T01:39:30.683880570Z","published":"2014-10-13T10:55:08Z","withdrawn":"2026-01-27T04:13:21.698954Z","related":["SUSE-RU-2015:0621-1","SUSE-SU-2015:0581-1","SUSE-SU-2015:0736-1","SUSE-SU-2015:1174-1","SUSE-SU-2015:1376-1"],"references":[{"type":"ARTICLE","url":"http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00015.html"},{"type":"ADVISORY","url":"http://secunia.com/advisories/60174"},{"type":"ADVISORY","url":"http://secunia.com/advisories/61142"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2014/10/08/21"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/70319"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1030991"},{"type":"FIX","url":"http://www.spinics.net/lists/linux-fsdevel/msg79153.html"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2419-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2420-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2513-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2514-1"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:1842"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:2077"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151095"},{"type":"ADVISORY","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/96921"},{"type":"FIX","url":"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0d0826019e529f21c84687521d03f60cd241ca7d"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}