Home

CVE-2016-9604

Description

It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as .dns_resolver in RHEL-7 or .builtin_trusted_keys upstream, by joining it as its session keyring. This allows root to bypass module signature verification by adding a new public key of its own devising to the keyring.

Risk Information

Base Score
4.4
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.018

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-3314-1) linux-image-generic_4.10.0.22.24_i386.debLinux
Linux kernel (USN-3314-1) linux-image-generic_4.10.0.22.24_amd64.debLinux
Linux kernel (USN-3314-1) linux-image-lowlatency_4.10.0.22.24_i386.debLinux
Linux kernel (USN-3314-1) linux-image-lowlatency_4.10.0.22.24_amd64.debLinux
Linux kernel (USN-3314-1) linux-image-4.10.0-22-generic_4.10.0-22.24_i386.debLinux
Linux kernel (USN-3314-1) linux-image-4.10.0-22-generic_4.10.0-22.24_amd64.debLinux
Linux kernel (USN-3314-1) linux-image-4.10.0-22-lowlatency_4.10.0-22.24_i386.debLinux
Linux kernel (USN-3314-1) linux-image-4.10.0-22-lowlatency_4.10.0-22.24_amd64.debLinux
Dtrace-modules-3.8.13-118.19.4.el6uek update (ELSA-2017-3606) dtrace-modules-3.8.13-118.19.4.el6uek-0.4.5-3.el6.x86_64.rpmLinux
Dtrace-modules-3.8.13-118.19.4.el7uek update (ELSA-2017-3606) dtrace-modules-3.8.13-118.19.4.el7uek-0.4.5-3.el7.x86_64.rpmLinux
Dtrace-modules-provider-headers update (ELSA-2017-3609) dtrace-modules-provider-headers-0.6.1-3.el6.x86_64.rpmLinux
Dtrace-modules-shared-headers update (ELSA-2017-3609) dtrace-modules-shared-headers-0.6.1-3.el6.x86_64.rpmLinux
Dtrace-modules-provider-headers update (ELSA-2017-3609) dtrace-modules-provider-headers-0.6.1-3.el7.x86_64.rpmLinux
Dtrace-modules-shared-headers update (ELSA-2017-3609) dtrace-modules-shared-headers-0.6.1-3.el7.x86_64.rpmLinux
Dtrace-modules-3.8.13-118.20.1.el6uek update (ELSA-2017-3657) dtrace-modules-3.8.13-118.20.1.el6uek-0.4.5-3.el6.x86_64.rpmLinux
Dtrace-modules-3.8.13-118.20.1.el7uek update (ELSA-2017-3657) dtrace-modules-3.8.13-118.20.1.el7uek-0.4.5-3.el7.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234