CVE-2016-2053 - CERT CVE

  1. CVE-2016-2053

ID CVE-2016-2053
Sažetak The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c.
Reference
CVSS
Base: 4.7
Impact: 6.9
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE COMPLETE
CVSS vektor AV:L/AC:M/Au:N/C:N/I:N/A:C
Zadnje važnije ažuriranje 30-08-2018 - 16:52
Objavljeno 02-05-2016 - 10:59