logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2017-12193

Description

The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel before 4.13.11 mishandles node splitting, which allows local users to cause a denial of service (NULL pointer dereference and panic) via a crafted application, as demonstrated by the keyring key type, and key addition and link creation operations.


Affected Package


OS OS Version Package Name Package Version
Debian 12 linux 5.18.5-1
Debian 11 linux 5.10.106-1
Debian 10 linux 4.19.235-1
Debian 999 linux 5.18.5-1
Debian 9 linux 4.9.228-1

Related