Sunday, 20 December 2015

USN-2843-3: Linux kernel (Raspberry Pi 2) vulnerabilities

郭永刚 discovered that the ppp implementation in the Linux kernel did not ensure that certain slot numbers are valid. A local attacker with the privilege to call ioctl() on /dev/ppp could cause a denial of service (system crash). (CVE-2015-7799) Dmitry Vyukov discovered that the Linux kernel’s keyring handler attempted to garbage collect incompletely instantiated keys.

Read the full article here by Full Circle Magazine
Post a Comment