The keyctl_read_key function in security/keys/keyctl.c in the Key Management subcomponent in the Linux kernel before 4.13.5 does not properly consider that a key may be possessed but negatively instantiated, which allows local users to cause a denial of service (OOPS and system crash) via a crafted KEYCTL_READ operation.
References
Link | Resource |
---|---|
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=37863c43b2c6464f252862bf2e9768264e961678 | Patch Vendor Advisory |
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.5 | Vendor Advisory |
https://access.redhat.com/errata/RHSA-2018:0151 | |
https://bugzilla.redhat.com/show_bug.cgi?id=1493435 | Issue Tracking Third Party Advisory |
https://github.com/torvalds/linux/commit/37863c43b2c6464f252862bf2e9768264e961678 | Patch Vendor Advisory |
https://lkml.org/lkml/2017/9/18/764 | Mailing List Third Party Advisory |
https://usn.ubuntu.com/3583-1/ | |
https://usn.ubuntu.com/3583-2/ |
Configurations
History
12 Feb 2023, 23:28
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | The keyctl_read_key function in security/keys/keyctl.c in the Key Management subcomponent in the Linux kernel before 4.13.5 does not properly consider that a key may be possessed but negatively instantiated, which allows local users to cause a denial of service (OOPS and system crash) via a crafted KEYCTL_READ operation. |
02 Feb 2023, 16:18
Type | Values Removed | Values Added |
---|---|---|
Summary | A vulnerability was found in the Key Management sub component of the Linux kernel, where when trying to issue a KEYTCL_READ on a negative key would lead to a NULL pointer dereference. A local attacker could use this flaw to crash the kernel. | |
References |
|
Information
Published : 2017-10-12 00:29
Updated : 2023-12-10 12:15
NVD link : CVE-2017-12192
Mitre link : CVE-2017-12192
CVE.ORG link : CVE-2017-12192
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-476
NULL Pointer Dereference