net/ceph/auth_x.c in Ceph, as used in the Linux kernel prior to 3.16.3, does not properly consider the possibility of kmalloc failure, which allows remote malicious users to cause a denial of service (system crash) or possibly have unspecified other impact via a long unencrypted auth ticket.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |