DEBIAN-CVE-2016-0728

The joinsessionkeyring function in security/keys/processkeys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service integer overflow and use-after-free via crafted keyctl commands...

kernel: Possible use-after-free vulnerability in keyring facility

A use-after-free flaw was found in the way the Linux kernel's key management subsystem handled keyring object reference counting in certain error path of the joinsessionkeyring function. A local, unprivileged user could use this flaw to escalate their privileges on the system...

Security update for the Linux Kernel (important)

The Linux kernel for openSUSE Leap 42.1 was updated to the 4.1.15 stable release, and also includes security and bugfixes. Following security bugs were fixed: - CVE-2016-0728: A reference leak in keyring handling with joinsessionkeyring could lead to local attackers gain root privileges. bsc96207...

The vulnerability of the Linux operating system’s kernel allows a hacker to enhance their privileges and execute arbitrary code on the target system.

The vulnerability of the joinsessionkeyring function in the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow a local attacker to increase their privileges and execute arbitrary code on the target system...

kernel: Possible use-after-free vulnerability in keyring facility

A use-after-free flaw was found in the way the Linux kernel's key management subsystem handled keyring object reference counting in certain error path of the joinsessionkeyring function. A local, unprivileged user could use this flaw to escalate their privileges on the system...

kernel: Possible use-after-free vulnerability in keyring facility

A use-after-free flaw was found in the way the Linux kernel's key management subsystem handled keyring object reference counting in certain error path of the joinsessionkeyring function. A local, unprivileged user could use this flaw to escalate their privileges on the system...

kernel: Possible use-after-free vulnerability in keyring facility

A use-after-free flaw was found in the way the Linux kernel's key management subsystem handled keyring object reference counting in certain error path of the joinsessionkeyring function. A local, unprivileged user could use this flaw to escalate their privileges on the system...

kernel: local denial of service in keyctl_join_session_keyring

Memory leak in the keyctljoinsessionkeyring function security/keys/keyctl.c in Linux kernel 2.6.29-rc2 and earlier allows local users to cause a denial of service kernel memory consumption via unknown vectors related to a "missing kfree."...

MDKSA-2005:220 - Updated kernel packages fix numerous vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2005:220 http://www.mandriva.com/security/ Package : kernel Date : November 30, 2005 Affected: 10.2 Problem Description: Multiple vulnerabilities in the Linux 2.6 kernel have been discovered and corrected in this...