Description: NULL pointer dereference due to KEYCTL_READ on negative key
References:
Notes:
 carnil> Introduced in 3.13-rc1 with 61ea0c0ba904a55f55317d850c1072ff7835ac92
Bugs:
upstream: released (4.14-rc3) [37863c43b2c6464f252862bf2e9768264e961678]
4.9-upstream-stable: released (4.9.53) [dda70d28c0ac191f128bfd3acfd800667ed86bdf]
3.16-upstream-stable: released (3.16.50) [3eab231a5b5382067ab3ead172780144f9c0f721]
3.2-upstream-stable: N/A "Vulnerable code introduced later in 3.13-rc1"
sid: released (4.13.4-2) [bugfix/all/KEYS-prevent-KEYCTL_READ-on-negative-key.patch]
4.9-stretch-security: released (4.9.65-1)
3.16-jessie-security: released (3.16.51-1)
3.2-wheezy-security: N/A "Vulnerable code not present"