The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.
2016-06-27T10:59:08.720
2025-04-12T10:46:40.837
Deferred
CVSSv3.0: 5.5 (MEDIUM)
AV:L/AC:L/Au:N/C:N/I:N/A:C
3.9
6.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | oracle | vm_server | 3.3 | Yes |
| Operating System | oracle | vm_server | 3.4 | Yes |
| Operating System | oracle | linux | 5.0 | Yes |
| Operating System | oracle | linux | 6 | Yes |
| Operating System | oracle | linux | 7 | Yes |
| Operating System | linux | linux_kernel | ≤ 4.6.3 | Yes |
| Operating System | novell | suse_linux_enterprise_real_time_extension | 12.0 | Yes |
| Operating System | redhat | enterprise_linux | 6.0 | Yes |
| Operating System | redhat | enterprise_linux_desktop | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_for_real_time | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_hpc_node | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_hpc_node_eus | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_server | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_server_aus | 7.2 | Yes |
| Operating System | redhat | enterprise_linux_server_eus | 7.2 | Yes |
| Operating System | redhat | enterprise_linux_workstation | 7.0 | Yes |
| Operating System | redhat | enterprise_mrg | 2.0 | Yes |