CVE-2016-8650

Опубликовано: 15 нояб. 2016

Источник: redhat

CVSS3: 8.8

CVSS2: 4.9

Описание

The mpi_powm function in lib/mpi/mpi-pow.c in the Linux kernel through 4.8.11 does not ensure that memory is allocated for limb data, which allows local users to cause a denial of service (stack memory corruption and panic) via an add_key system call for an RSA key with a zero exponent.

A flaw was found in the Linux kernel key management subsystem in which a local attacker could crash the kernel or corrupt the stack and additional memory (denial of service) by supplying a specially crafted RSA key. This flaw panics the machine during the verification of the RSA key.

Отчет

This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7, MRG-2 and realtime kernels. This issue does not affect kernels that ship with Red Hat Enterprise Linux 5.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Fixed	RHSA-2018:1854	19.06.2018
Red Hat Enterprise Linux 7	kernel-rt	Fixed	RHSA-2017:0931	12.04.2017
Red Hat Enterprise Linux 7	kernel	Fixed	RHSA-2017:0933	12.04.2017
Red Hat Enterprise MRG 2	kernel-rt	Fixed	RHSA-2017:0932	12.04.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=1395187kernel: Null pointer dereference via keyctl

8.8 High

CVSS3

4.9 Medium

CVSS2

Связанные уязвимости

CVE-2016-8650

CVSS3: 5.5

ubuntu

больше 8 лет назад

CVE-2016-8650

CVSS3: 5.5

nvd

больше 8 лет назад

CVE-2016-8650

CVSS3: 5.5

debian

больше 8 лет назад

The mpi_powm function in lib/mpi/mpi-pow.c in the Linux kernel through ...

GHSA-pjpg-8qgr-gpc5

CVSS3: 5.5

github

около 3 лет назад

ELSA-2016-3651

oracle-oval

больше 8 лет назад

ELSA-2016-3651: Unbreakable Enterprise kernel security update (IMPORTANT)

8.8 High

CVSS3

4.9 Medium

CVSS2