selinux-policy when sysctl fs.protected_hardlinks are set to 0 allows local users to cause a denial of service (SSH login prevention) by creating a hardlink to /etc/passwd from a directory named .config, and updating selinux-policy.Referenceshttps://bugzilla.redhat.com/show_bug.cgi?id=1218672
