Vulnerabilities

CVE-2016-0728

by Fred · 07/02/2016

The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted keyctl commands.

Date published : 2016-02-07

http://www.securityfocus.com/bid/81054

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=23567fd052a9abb6d67fe8e7a9ccdd9800a540f2

Similar

Tags: Cybersecurity Alert