CVE-2009-3624

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.32-rc5

Description The issue is related to the get instantiation keyring function in the KEYS subsystem, which does not properly maintain the reference count of a keyring. This allows local users to gain privileges or cause a denial of service via vectors involving calls to this function without specifying a keyring by ID. The exploitation can be demonstrated by a series of keyctl request2 and keyctl list commands.

Recommendations For Linux kernel versions prior to 2.6.32-rc5, update to version 2.6.32-rc5 or later to resolve the issue.