CVE-2016-7042
CVSS v3.0
6.2 (Medium)
CVSS v2.0
4.9 (Medium)
EPSS
0.12 % (47th)
Affected Products
1
Advisories
27
The proc_keys_show function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection (gcc) stack protector is enabled, uses an incorrect buffer size for certain timeout data, which allows local users to cause a denial of service (stack memory corruption and panic) by reading the /proc/keys file.
Weaknesses
- CWE-119
- Improper Restriction of Operations within the Bounds of a Memory Buffer
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2016-10-16 21:59:10
(8 years ago) - Updated Date
-
2018-01-05 02:31:10
(6 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...