A race between revoking a user-type key and reading from it was found causing a null pointer dereference and the kernel to crash. This condition can be triggered by unprivileged user with a local account.
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1291198]
Red Hat would like to thank Dmitry Vyukov of Google for reporting this issue.
kernel-4.2.8-200.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
kernel-4.2.8-300.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.
This issue affects the Linux kernels as shipped with Red Hat Enterprise Linux 5,6 and 7 and may be addressed in a future update.