[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2015-5327 kernel: User triggerable out-of-bounds read
From: Adam Maris <amaris () redhat ! com>
Date: 2015-11-27 14:12:18
Message-ID: 565864C2.6070208 () redhat ! com
[Download RAW message or body]
An out-of-bounds memory read was found, affecting kernels from 4.3-rc1 onwards.
This vulnerability was caused by incorrect X.509 time validation in x509_decode_time() function \
in x509_cert_parser.c.
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cc25b994acfbc901429da682d0f73c190e960206
--
Adam Maris / Red Hat Product Security
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic