CVE-2017-9211

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
4.9
MEDIUM
Affected
1
PROJECT

Description

The crypto_skcipher_init_tfm function in crypto/skcipher.c in the Linux kernel through 4.11.2 relies on a setkey function that lacks a key-size check, which allows local users to cause a denial of service (NULL pointer dereference) via a crafted application.

torvalds/linux
torvalds/linux
Linux kernel source tree
GitHubGitHub
237K