CVE-2016-0728
CVSS v3.1
7.8 (High)
CVSS v2.0
7.2 (High)
EPSS
0.04 % (0th)
Affected Products
5
Advisories
30
The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted keyctl commands.
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2016-02-08 03:59:10
(8 years ago) - Updated Date
-
2023-02-12 23:15:55
(19 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...