PT-2016-5966 · Linux+5 · Linux Kernel+5

Dan Carpenter

·

Published

2016-06-27

·

Updated

2024-06-15

·

CVE-2016-4470

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.6.3
Description The issue is related to the key reject and link function in the Linux kernel, which does not properly initialize a certain data structure. This allows local users to cause a denial of service, resulting in a system crash, by using a crafted keyctl request.
Recommendations For Linux kernel versions prior to 4.6.3, update to version 4.6.3 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

ALT-PU-2016-1774
ALT-PU-2017-1330
CESA-2016_1539
CESA-2016_2006
CVE-2016-4470
DLA-609-1
DSA-3607-1
MGASA-2016-0271
MGASA-2016-0283
MGASA-2016-0284
OPENSUSE-SU-2016_1798-1
OPENSUSE-SU-2016_2144-1
OPENSUSE-SU-2016_2184-1
OPENSUSE-SU-2024:10128-1
RHSA-2016:1532
RHSA-2016:1539
RHSA-2016:1541
RHSA-2016:1657
RHSA-2016:2006
RHSA-2016:2074
RHSA-2016:2076
RHSA-2016:2128
RHSA-2016:2133
RHSA-2016_1539
RHSA-2016_1541
RHSA-2016_2006
SUSE-SU-2016:1937-1
SUSE-SU-2016:1961-1
SUSE-SU-2016:1985-1
SUSE-SU-2016:1994-1
SUSE-SU-2016:1995-1
SUSE-SU-2016:1998-1
SUSE-SU-2016:1999-1
SUSE-SU-2016:2000-1
SUSE-SU-2016:2001-1
SUSE-SU-2016:2002-1
SUSE-SU-2016:2003-1
SUSE-SU-2016:2005-1
SUSE-SU-2016:2006-1
SUSE-SU-2016:2007-1
SUSE-SU-2016:2009-1
SUSE-SU-2016:2010-1
SUSE-SU-2016:2011-1
SUSE-SU-2016:2014-1
SUSE-SU-2016:2018-1
SUSE-SU-2016:2105-1
SUSE-SU-2016:2245-1
SUSE-SU-2016_1998-1
SUSE-SU-2016_1999-1
SUSE-SU-2016_2018-1
SUSE-SU-2017:0333-1
SUSE-SU-2017:0471-1
USN-3049-1
USN-3050-1
USN-3051-1
USN-3052-1
USN-3053-1
USN-3054-1
USN-3055-1
USN-3056-1
USN-3057-1

Affected Products

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu