Linux kernel (Wily HWE) vulnerability

ID USN-2872-2
Type ubuntu
Reporter Ubuntu
Modified 2016-01-19T00:00:00


Yevgeny Pats discovered that the session keyring implementation in the Linux kernel did not properly reference count when joining an existing session keyring. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code with administrative privileges.