blob: 7a3fc6a4c7c77291d51ceaa5c9040c0c0692706e (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
Candidate: CVE-2007-0006
References:
http://bugzilla.kernel.org/show_bug.cgi?id=7727
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9ad0830f307bcd8dc285cfae58998d43b21727f4
Description:
The key serial number collision avoidance code in the key_alloc_serial
function in Linux kernel 2.6.9 up to 2.6.20 allows local users to cause a
denial of service (crash) via vectors that trigger a null dereference, as
originally reported as "spinlock CPU recursion."
Ubuntu-Description:
Notes:
Bugs: 398470
upstream:
linux-2.6:
2.6.18-etch-security:
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.6.12-breezy-security: needed
2.6.15-dapper-security: needed
2.6.17-edgy-security: needed
|
