The keyctl_session_to_parent function in security/keys/keyctl.c in the Linux kernel 2.6.35.4 and earlier expects that a certain parent session keyring exists, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a KEYCTL_SESSION_TO_PARENT argument to the keyctl function.
Software | From | Fixed in |
---|---|---|
linux / linux_kernel | - | 2.6.35.4 |
canonical / ubuntu_linux | 10.04 | 10.04.x |
canonical / ubuntu_linux | 10.10 | 10.10.x |
canonical / ubuntu_linux | 6.06 | 6.06.x |
canonical / ubuntu_linux | 8.04 | 8.04.x |
canonical / ubuntu_linux | 9.04 | 9.04.x |
canonical / ubuntu_linux | 9.10 | 9.10.x |
suse / suse_linux_enterprise_server | 11-sp1 | 11-sp1.x |
suse / suse_linux_enterprise_desktop | 11-sp1 | 11-sp1.x |