Lucene search

K
androidAndroidvulnerabilities.orgANDROID:CVE-2016-4470
HistorySep 01, 2016 - 12:00 a.m.

CVE-2016-4470

2016-09-0100:00:00
androidvulnerabilities.org
www.androidvulnerabilities.org
31

EPSS

0.001

Percentile

17.0%

The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.