CVE-2012-2745

Опубликовано: 10 июл. 2012

Источник: redhat

CVSS2: 4.7

EPSS Низкий

Описание

The copy_creds function in kernel/cred.c in the Linux kernel before 3.3.2 provides an invalid replacement session keyring to a child process, which allows local users to cause a denial of service (panic) via a crafted application that uses the fork system call.

Отчет

This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 as they did not include support for KEYCTL_SESSION_TO_PARENT keyctl IOCTL as introduced in upstream commit ee18d64c. This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux MRG 2 as they already contain the fix. This issue was addressed in Red Hat Enterprise Linux 6 via RHSA-2012:1064 https://rhn.redhat.com/errata/RHSA-2012-1064.html.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise MRG 2	realtime-kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Fixed	RHSA-2012:1064	10.07.2012

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=833428kernel: cred: copy_process() should clear child->replacement_session_keyring

EPSS

Процентиль: 18%

0.00057

Низкий

4.7 Medium

CVSS2

Связанные уязвимости

CVE-2012-2745

ubuntu

около 13 лет назад

CVE-2012-2745

nvd

около 13 лет назад

CVE-2012-2745

debian

около 13 лет назад

The copy_creds function in kernel/cred.c in the Linux kernel before 3. ...

GHSA-gxmr-6cg7-7q62

github

больше 3 лет назад

ELSA-2012-1064

oracle-oval

около 13 лет назад

ELSA-2012-1064: kernel security and bug fix update (IMPORTANT)

EPSS

Процентиль: 18%

0.00057

Низкий

4.7 Medium

CVSS2