PT-2015-7650 · Linux+5 · Linux Kernel+5

Dmitry Vyukov

·

Publicado

2015-10-29

·

Atualizado

2023-02-13

·

CVE-2015-7872

CVSS v2.0

2.1

Baixa

VetorAV:L/AC:L/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.2.7
Description The issue allows local users to cause a denial of service via crafted keyctl commands. It is related to the key gc unused keys function in security/keys/gc.c.
Recommendations For Linux kernel versions prior to 4.2.7, update to version 4.2.7 or later to resolve the issue.

Exploit

Correção

DoS

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

ALT-PU-2015-2010
ALT-PU-2016-1485
CESA-2015_2636
CESA-2016_0185
CVE-2015-7872
DSA-3396-1
MGASA-2016-0005
MGASA-2016-0014
MGASA-2016-0015
OPENSUSE-SU-2015_1842-1
OPENSUSE-SU-2016_0301-1
OPENSUSE-SU-2016_1008-1
RHSA-2015:2636
RHSA-2015_2636
RHSA-2016:0185
RHSA-2016:0212
RHSA-2016:0224
RHSA-2016_0185
RHSA-2016_0212
SUSE-SU-2015:2108-1
SUSE-SU-2015:2194-1
SUSE-SU-2015:2292-1
SUSE-SU-2015:2339-1
SUSE-SU-2015:2350-1
SUSE-SU-2016:0335-1
SUSE-SU-2016:0337-1
SUSE-SU-2016:0354-1
SUSE-SU-2016:0380-1
SUSE-SU-2016:0381-1
SUSE-SU-2016:0383-1
SUSE-SU-2016:0384-1
SUSE-SU-2016:0386-1
SUSE-SU-2016:0387-1
SUSE-SU-2016:0434-1
SUSE-SU-2016:2074-1
USN-2823-1
USN-2824-1
USN-2826-1
USN-2829-1
USN-2829-2
USN-2840-1
USN-2840-2
USN-2843-1
USN-2843-2
USN-2843-3

Produtos afetados

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu