NULL pointer dereference vulnerability in keyring_search_aux function in Linux kernel through 3.14.79

NULL pointer dereference vulnerability in keyring_search_aux function in Linux kernel through 3.14.79

CVE-2017-6951 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

The keyring_search_aux function in security/keys/keyring.c in the Linux kernel through 3.14.79 allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a request_key system call for the "dead" type.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.