Red Hat Bugzilla – Bug 1072419
CVE-2014-0102 kernel: security: keyring cycle detector DoS
Last modified: 2015-10-15 14:16:07 EDT
Description of the problem:
The problem is that search_nested_keyrings() sees two keyrings that have
matching type and description, so keyring_compare_object() returns true.
s_n_k() then passes the key to the iterator function -
keyring_detect_cycle_iterator() - which *should* check to see whether this is
the keyring of interest, not just one with the same name and, leads to
An unprivileged local user could use this flaw to crash the system.
Created attachment 870451 [details]
Upstream proposed patch
This issue did not affect the versions of Linux kernel package as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2 as they did not backport the commit that introduced this issue.