CVE-2006-1522

CVE-2006-1522 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

The sys_add_key function in the keyring code in Linux kernel 2.6.16.1 and 2.6.17-rc1, and possibly earlier versions, allows local users to cause a denial of service (OOPS) via keyctl requests that add a key to a user key instead of a keyring key, which causes an invalid dereference in the __keyring_search_one function.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.