Vulnerabilities

CVE-2016-8650

by Fred · 27/11/2016

The mpi_powm function in lib/mpi/mpi-pow.c in the Linux kernel through 4.8.11 does not ensure that memory is allocated for limb data, which allows local users to cause a denial of service (stack memory corruption and panic) via an add_key system call for an RSA key with a zero exponent.

Date published : 2016-11-27

http://www.securityfocus.com/bid/94532

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f5527fffff3f002b0a6b376163613b82f69de073

Similar

Tags: Cybersecurity Alert