LIN9-4225 : Security Advisory - linux - CVE-2017-7472
Created: May 14, 2017
Updated: May 29, 2018
Resolved Date: Aug 10, 2017
Found In Version: 9.0.0.6
Fix Version: 9.0.0.7
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Kernel
Description
The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of service (memory consumption) via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring calls.
https://nvd.nist.gov/vuln/detail/CVE-2017-7472
