{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2015-7872", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 4.2.6 allows local users to cause a denial of service (OOPS) via crafted keyctl commands." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "name" : "[oss-security] 20151020 Re: CVE request: crash when attempt to garbage collect an uninstantiated keyring - Linux kernel", "refsource" : "MLIST", "url" : "http://www.openwall.com/lists/oss-security/2015/10/20/6" }, { "name" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ce1fad2740c648a4340f6f6c391a8a83769d2e8c", "refsource" : "CONFIRM", "url" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ce1fad2740c648a4340f6f6c391a8a83769d2e8c" }, { "name" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f05819df10d7b09f6d1eb6f8534a8f68e5a4fe61", "refsource" : "CONFIRM", "url" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f05819df10d7b09f6d1eb6f8534a8f68e5a4fe61" }, { "name" : "https://bugzilla.redhat.com/show_bug.cgi?id=1272172", "refsource" : "CONFIRM", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1272172" }, { "name" : "https://bugzilla.redhat.com/show_bug.cgi?id=1272371", "refsource" : "CONFIRM", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1272371" }, { "name" : "https://github.com/torvalds/linux/commit/ce1fad2740c648a4340f6f6c391a8a83769d2e8c", "refsource" : "CONFIRM", "url" : "https://github.com/torvalds/linux/commit/ce1fad2740c648a4340f6f6c391a8a83769d2e8c" }, { "name" : "https://github.com/torvalds/linux/commit/f05819df10d7b09f6d1eb6f8534a8f68e5a4fe61", "refsource" : "CONFIRM", "url" : "https://github.com/torvalds/linux/commit/f05819df10d7b09f6d1eb6f8534a8f68e5a4fe61" }, { "name" : "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068676", "refsource" : "CONFIRM", "url" : "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068676" }, { "name" : "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", "refsource" : "CONFIRM", "url" : "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html" }, { "name" : "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", "refsource" : "CONFIRM", "url" : "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html" }, { "name" : "https://source.android.com/security/bulletin/2016-12-01.html", "refsource" : "CONFIRM", "url" : "https://source.android.com/security/bulletin/2016-12-01.html" }, { "name" : "DSA-3396", "refsource" : "DEBIAN", "url" : "http://www.debian.org/security/2015/dsa-3396" }, { "name" : "HPSBGN03565", "refsource" : "HP", "url" : "http://marc.info/?l=bugtraq&m=145975164525836&w=2" }, { "name" : "RHSA-2016:0185", "refsource" : "REDHAT", "url" : "http://rhn.redhat.com/errata/RHSA-2016-0185.html" }, { "name" : "RHSA-2016:0212", "refsource" : "REDHAT", "url" : "http://rhn.redhat.com/errata/RHSA-2016-0212.html" }, { "name" : "RHSA-2016:0224", "refsource" : "REDHAT", "url" : "http://rhn.redhat.com/errata/RHSA-2016-0224.html" }, { "name" : "RHSA-2015:2636", "refsource" : "REDHAT", "url" : "http://rhn.redhat.com/errata/RHSA-2015-2636.html" }, { "name" : "SUSE-SU-2016:2074", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html" }, { "name" : "openSUSE-SU-2016:1008", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html" }, { "name" : "SUSE-SU-2016:0335", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00007.html" }, { "name" : "SUSE-SU-2016:0337", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00009.html" }, { "name" : "SUSE-SU-2016:0354", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00013.html" }, { "name" : "SUSE-SU-2016:0380", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00017.html" }, { "name" : "SUSE-SU-2016:0381", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00018.html" }, { "name" : "SUSE-SU-2016:0383", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00019.html" }, { "name" : "SUSE-SU-2016:0384", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00020.html" }, { "name" : "SUSE-SU-2016:0386", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00021.html" }, { "name" : "SUSE-SU-2016:0387", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00022.html" }, { "name" : "SUSE-SU-2016:0434", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00034.html" }, { "name" : "SUSE-SU-2015:2108", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00035.html" }, { "name" : "SUSE-SU-2015:2194", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00005.html" }, { "name" : "SUSE-SU-2015:2292", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00018.html" }, { "name" : "SUSE-SU-2015:2339", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00026.html" }, { "name" : "SUSE-SU-2015:2350", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00031.html" }, { "name" : "USN-2843-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2843-1" }, { "name" : "USN-2843-2", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2843-2" }, { "name" : "USN-2843-3", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2843-3" }, { "name" : "USN-2823-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2823-1" }, { "name" : "USN-2824-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2824-1" }, { "name" : "USN-2826-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2826-1" }, { "name" : "USN-2829-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2829-1" }, { "name" : "USN-2829-2", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2829-2" }, { "name" : "USN-2840-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2840-1" }, { "name" : "USN-2840-2", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-2840-2" }, { "name" : "77544", "refsource" : "BID", "url" : "http://www.securityfocus.com/bid/77544" }, { "name" : "1034472", "refsource" : "SECTRACK", "url" : "http://www.securitytracker.com/id/1034472" } ] } }