Release date:
Updated on:
Affected Systems:
Linux kernel 3.13.x
Description:
--------------------------------------------------------------------------------
CVE (CAN) ID: CVE-2014-0102
Linux Kernel is the Kernel of the Linux operating system.
In versions earlier than Linux Kernel 3.13.6, security/keys/keyring. the keyring_detect_cycle_iterator function in c does not correctly determine whether the keyrings are consistent. This allows local users to exploit this vulnerability by using specially crafted keyctl commands to cause DOS.
<* Source: Tommi Rantala
Link: http://secunia.com/advisories/57542/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Linux
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.kernel.org/
Https://bugzilla.redhat.com/show_bug.cgi? Id = 1072419
Http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit? Id = b2a4df200d570b2c33a57e1ebfa5896e4bc81b69
Linux Kernel: click here
Linux Kernel: click here
The Linux kernel replaces iptables with nftables
Linux 3.12 code Suicidal Squirrel
How to install Linux 3.11 Kernel on Ubuntu
The Ubuntu 13.10 (Saucy Salamander) Kernel has been upgraded to Linux Kernel 3.10 RC5
Linux Kernel 3.4.62 LTS is now available for download
How to install Linux kernel 13.10 On Ubuntu 3.12