Race condition vulnerability in install_user_keyrings function in Linux kernel before 3.8.3

Race condition vulnerability in install_user_keyrings function in Linux kernel before 3.8.3

CVE-2013-1792 · MEDIUM Severity

AV:L/AC:M/AU:N/C:N/I:N/A:C

Race condition in the install_user_keyrings function in security/keys/process_keys.c in the Linux kernel before 3.8.3 allows local users to cause a denial of service (NULL pointer dereference and system crash) via crafted keyctl system calls that trigger keyring operations in simultaneous threads.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.