CVE-2016-4470
CVSS v3.0
5.5 (Medium)
CVSS v2.0
4.9 (Medium)
EPSS
0.05 % (18th)
Affected Products
14
Advisories
45
The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.
Weaknesses
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2016-06-27 10:59:08
(8 years ago) - Updated Date
-
2023-02-12 23:21:21
(19 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...