Lucene search

K
f5F5F5:K55672042
HistoryOct 23, 2016 - 12:00 a.m.

K55672042 : Linux kernel vulnerability CVE-2016-4470

2016-10-2300:00:00
my.f5.com
36

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

17.0%

Security Advisory Description

The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command. (CVE-2016-4470)
Impact
This vulnerability allows disruption of service.