CVE-2016-2550

2016-04-27T17:59:00
ID CVE-2016-2550
Type cve
Reporter cve@mitre.org
Modified 2018-01-18T18:18:00

Description

The Linux kernel before 4.5 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by leveraging incorrect tracking of descriptor ownership and sending each descriptor over a UNIX socket before closing it. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-4312.