The eCryptfs subsystem in the Linux kernel before 3.18 allows local users to gain privileges via a large filesystem stack that includes an overlayfs layer, related to fs/ecryptfs/main.c and fs/overlayfs/super.c. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9922