Info

Disclosure

Apr 10, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

The Linux kernel contains a flaw that may allow a local denial of service. The issue is triggered in the kernel's key retention facility. When an attempt is made to add a key to a keyring that is not actually a keyring structure, the '__keyring_search_one()' function fails to detect that issue and kernel 'oops' occurs, which will result in loss of availability for the platform.

Classification

Location: Local Access Required
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Upgrade to version 2.6.16.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Linux

Kernel

2.6.16.2

References

Bugtraq ID: 17451
Secunia Advisory ID: 19573 19735 20157 20237 20716 21745
CVE ID: 2006-1522 (see also: NVD)
SCIP VulDB ID: 2134
ISS X-Force ID: 25722
VUPEN Advisory: ADV-2006-1307
Vendor Specific News/Changelog Entry: http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.3
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=c3a9d6541f84ac3ff566982d08389b87c1c36b4e
Vendor Specific Advisory URL: http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm
http://www.mandriva.com/security/advisories?name=MDKSA-2006:086
http://www.ubuntu.com/usn/usn-302-1
RedHat RHSA: RHSA-2006:0493

Credit

David Howells - dhowellsredhat.com - RedHat

Direct URL: http://osvdb.org/36218