LIN8-6706 : Security Advisory - linux - CVE-2017-7472
Created: May 14, 2017
Updated: Dec 3, 2018
Resolved Date: May 18, 2017
Found In Version: 8.0.0.17
Fix Version: 8.0.0.18
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel
Description
The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of service (memory consumption) via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring calls.
https://nvd.nist.gov/vuln/detail/CVE-2017-7472
