Описание
ELSA-2016-0064: kernel security update (IMPORTANT)
[3.10.0-327.4.5.OL7]
- Oracle Linux certificates (Alexey Petrenko)
[3.10.0-327.4.5]
- [security] keys: Fix keyring ref leak in join_session_keyring() (David Howells) [1298931 1298036] {CVE-2016-0728}
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
kernel
3.10.0-327.4.5.el7
kernel-abi-whitelists
3.10.0-327.4.5.el7
kernel-debug
3.10.0-327.4.5.el7
kernel-debug-devel
3.10.0-327.4.5.el7
kernel-devel
3.10.0-327.4.5.el7
kernel-doc
3.10.0-327.4.5.el7
kernel-headers
3.10.0-327.4.5.el7
kernel-tools
3.10.0-327.4.5.el7
kernel-tools-libs
3.10.0-327.4.5.el7
kernel-tools-libs-devel
3.10.0-327.4.5.el7
perf
3.10.0-327.4.5.el7
python-perf
3.10.0-327.4.5.el7
Связанные CVE
Связанные уязвимости
The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted keyctl commands.
The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted keyctl commands.
The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted keyctl commands.
The join_session_keyring function in security/keys/process_keys.c in t ...
