[LU-7709] kernel update [RHEL7.2 3.10.0-327.4.5.el7] Created: 25/Jan/16  Updated: 11/Sep/18  Resolved: 11/Sep/18

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Bug Priority: Minor
Reporter: Bob Glossman (Inactive) Assignee: Bob Glossman (Inactive)
Resolution: Fixed Votes: 0
Labels: None

Issue Links:
Related
is related to LU-7632 kernel update [RHEL7.2 3.10.0-327.4.4... Resolved
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   
  • A use-after-free flaw was found in the way the Linux kernel's key
    management subsystem handled keyring object reference counting in certain
    error path of the join_session_keyring() function. A local, unprivileged
    user could use this flaw to escalate their privileges on the system.
    (CVE-2016-0728, Important)

 Comments   
Comment by Bob Glossman (Inactive) [ 26/Jan/16 ]

in master:
http://review.whamcloud.com/18150

Generated at Sat Feb 10 02:11:15 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.