oss-sec mailing list archives
Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type
From: Kurt Seifried <kseifried () redhat com>
Date: Mon, 21 Nov 2011 14:26:29 -0700
On 11/21/2011 10:51 AM, Petr Matousek wrote:
There is a NULL pointer deref in the user-defined key type whereby updating a negative key into a fully instantiated key will cause an oops to occur when the code attempts to free the non-existent old payload. Upstream commit: 9f35a33b8d06263a165efe3541d9aa0cdbd70b3b References: https://lkml.org/lkml/2011/11/15/363 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-4110 Thanks,
Please use CVE-2011-4331 for this issue. -- -Kurt Seifried / Red Hat Security Response Team
Current thread:
- CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Petr Matousek (Nov 21)
- Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Kurt Seifried (Nov 21)
- Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Eugene Teo (Nov 21)
- Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Kurt Seifried (Nov 21)
- Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Kurt Seifried (Nov 21)