CVE-2017-7472

Summary

The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of service (memory consumption) via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring calls.

Affected Software

VendorProductVersion RangeStatus
n/aLinux kernel before 4.10.13Linux kernel before 4.10.13affected

Weaknesses

  • exhaust kernel memory

ADP Enrichment

CVE Program Container

Additional References

References