[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE-2015-5327 kernel: User triggerable out-of-bounds read
From:       Adam Maris <amaris () redhat ! com>
Date:       2015-11-27 14:12:18
Message-ID: 565864C2.6070208 () redhat ! com
[Download RAW message or body]

An out-of-bounds memory read was found, affecting kernels from 4.3-rc1 onwards.
This vulnerability was caused by incorrect X.509 time validation in x509_decode_time() function \
in x509_cert_parser.c.

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cc25b994acfbc901429da682d0f73c190e960206


-- 
Adam Maris / Red Hat Product Security


[prev in list] [next in list] [prev in thread] [next in thread]