The evm_update_evmxattr function in security/integrity/evm/evm_crypto.c in the Linux kernel before 3.7.5, when the Extended Verification Module (EVM) is enabled, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via an attempted removexattr operation on an inode of a sockfs filesystem.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | linux | < 3.2.39-1 | linux_3.2.39-1_all.deb |
Debian | 11 | all | linux | < 3.2.39-1 | linux_3.2.39-1_all.deb |
Debian | 10 | all | linux | < 3.2.39-1 | linux_3.2.39-1_all.deb |
Debian | 999 | all | linux | < 3.2.39-1 | linux_3.2.39-1_all.deb |
Debian | 13 | all | linux | < 3.2.39-1 | linux_3.2.39-1_all.deb |