Lucene search

K
cvelistRedhatCVELIST:CVE-2016-0728
HistoryFeb 08, 2016 - 2:00 a.m.

CVE-2016-0728

2016-02-0802:00:00
redhat
www.cve.org
7

AI Score

7.7

Confidence

High

EPSS

0

Percentile

0.4%

The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted keyctl commands.

References