๐ Linux Kernel up to 4.14.5 KEYS Subsystem request_key.c request_key() System Calls privilege escalation
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in Linux Kernel up to 4.14.5 (Operating System). It has been rated as critical. This issue affects the function request_key()
of the file security/keys/request_key.c of the component KEYS Subsystem. Upgrading to version 4.14.6 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at git.kernel.org. The best possible mitigation is suggested to be patching the affected component. A possible mitigation has been published 3 days after the disclosure of the vulnerability. ...