Andrey Ryabinin

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.18 **Description** The issue is related to the KEYS subsystem in the Linux kernel, which allows local users to gain privileges or cause a denial of service. This can happen through vectors involving a NULL value for a certain match field, related to the keyring search iterator function in keyring.c. The exploitation of this issue can lead to a NULL pointer dereference and system crash. **Recommendations** For Linux kernel versions prior to 3.18, update to version 3.18 or later to resolve the issue. As a temporary workaround, consider restricting access to the keyring search iterator function in keyring.c to minimize the risk of exploitation.