LIN6-13004 : Security Advisory - linux - CVE-2017-7472
Created: May 14, 2017
Updated: Dec 3, 2018
Resolved Date: Jun 6, 2017
Found In Version: 6.0.0.33
Fix Version: 6.0.0.34
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Kernel
Description
The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of service (memory consumption) via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring calls.
https://nvd.nist.gov/vuln/detail/CVE-2017-7472