QwikSec

Security Database

CVE

CWE

Training

CVE-2009-3624

Published: Nov 2, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The get_instantiation_keyring function in security/keys/keyctl.c in the KEYS subsystem in the Linux kernel before 2.6.32-rc5 does not properly maintain the reference count of a keyring, which allows local users to gain privileges or cause a denial of service (OOPS) via vectors involving calls to this function without specifying a keyring by ID, as demonstrated by a series of keyctl request2 and keyctl list commands.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20091022 CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_UBUNTU

SUSE-SA:2010:001

vendor-advisory

x_refsource_SUSE

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=21279cfa107af07ef985539ac0de2152b9cba5f5

x_refsource_CONFIRM

http://twitter.com/spendergrsec/statuses/4916661870

x_refsource_MISC

http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc5

x_refsource_CONFIRM

[oss-security] 20091022 Re: CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.