CVE-2015-3170

MEDIUM

selinux-policy - DoS

Title source: llm

Description

selinux-policy when sysctl fs.protected_hardlinks are set to 0 allows local users to cause a denial of service (SSH login prevention) by creating a hardlink to /etc/passwd from a directory named .config, and updating selinux-policy.

References (1)

Scores

CVSS v3 5.5
EPSS 0.0004
EPSS Percentile 12.1%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-254
Status published
Products (2)
selinux_project/selinux
n/a/n/a
Published Jul 21, 2017
Tracked Since Feb 18, 2026