The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux kernel prior to 3.5.7 does not properly handle error conditions in dump_one_state function calls, which allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 3.5.2 |
||
linux linux kernel |
||
linux linux kernel 3.5.5 |
||
linux linux kernel 3.5.3 |
||
linux linux kernel 3.5.4 |
||
linux linux kernel 3.5.1 |