Lucene search

K

Veracode Vulnerability DatabaseVERACODE:22911

HistoryApr 02, 2020 - 12:38 a.m.

Authorization Bypass

2020-04-0200:38:41

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

8

0.0004 Low

EPSS

Percentile

10.3%

kernel is vulnerable to authorization bypass. The vulnerability exists through missing permissions check for request_key() destination allows local attackers to add keys to keyring without Write permission.

CPENameOperatorVersion
kerneleq3.10.0__229.7.2.ael7b
kerneleq3.10.0__514.16.1.el7
kerneleq3.10.0__514.21.2.el7
kerneleq3.10.0__229.11.1.ael7b
kerneleq3.10.0__862.6.3.el7
kerneleq3.10.0__693.17.1.el7
kerneleq3.10.0__957.12.1.el7
kerneleq3.10.0__862.2.3.el7
kerneleq3.10.0__514.26.2.el7
kerneleq3.10.0__1062.el7

Rows per page:

1-10 of 1261

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4dca6ea1d9432052afb06baf2e3ae78188a4410b

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4dca6ea1d9432052afb06baf2e3ae78188a4410b

www.securityfocus.com/bid/102301

www.securityfocus.com/bid/102301

access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.8_release_notes/index

access.redhat.com/errata/RHSA-2020:1016

access.redhat.com/security/updates/classification/#moderate

bugzilla.redhat.com/show_bug.cgi?id=1507149

bugzilla.redhat.com/show_bug.cgi?id=1651706

bugzilla.redhat.com/show_bug.cgi?id=1694201

bugzilla.redhat.com/show_bug.cgi?id=1702264

bugzilla.redhat.com/show_bug.cgi?id=1711520

bugzilla.redhat.com/show_bug.cgi?id=1733347

bugzilla.redhat.com/show_bug.cgi?id=1749390

bugzilla.redhat.com/show_bug.cgi?id=1750577

bugzilla.redhat.com/show_bug.cgi?id=1757325

bugzilla.redhat.com/show_bug.cgi?id=1757872

bugzilla.redhat.com/show_bug.cgi?id=1758001

bugzilla.redhat.com/show_bug.cgi?id=1760294

bugzilla.redhat.com/show_bug.cgi?id=1770404

github.com/torvalds/linux/commit/4dca6ea1d9432052afb06baf2e3ae78188a4410b

github.com/torvalds/linux/commit/4dca6ea1d9432052afb06baf2e3ae78188a4410b

lists.debian.org/debian-lts-announce/2018/01/msg00004.html

lists.debian.org/debian-lts-announce/2018/01/msg00004.html

usn.ubuntu.com/3617-1/

usn.ubuntu.com/3617-1/

usn.ubuntu.com/3617-2/

usn.ubuntu.com/3617-2/

usn.ubuntu.com/3617-3/

usn.ubuntu.com/3617-3/

usn.ubuntu.com/3619-1/

usn.ubuntu.com/3619-1/

usn.ubuntu.com/3619-2/

usn.ubuntu.com/3619-2/

usn.ubuntu.com/3620-1/

usn.ubuntu.com/3620-1/

usn.ubuntu.com/3620-2/

usn.ubuntu.com/3620-2/

usn.ubuntu.com/3632-1/

usn.ubuntu.com/3632-1/

www.debian.org/security/2017/dsa-4073

www.debian.org/security/2017/dsa-4073

www.debian.org/security/2018/dsa-4082

www.debian.org/security/2018/dsa-4082

www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.6

www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.6

0.0004 Low

EPSS

Percentile

10.3%

Related for VERACODE:22911

nvd1 debiancve1 redhatcve1 cve1 prion1 ubuntucve1 cvelist1 ibm3 openvas16 nessus36 virtuozzo6 oraclelinux3 osv3 debian4 ubuntu8 photon1 redhat2 centos1 cloudfoundry1 androidsecurity1