Advisories ยป MGASA-2016-0033

Updated kernel packages fix security vulnerability

Publication date: 21 Jan 2016
Modification date: 21 Jan 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-0728

Description

Perception Point Research Team found a reference leak in keyring in
join_session_keyring() that can be exploited to successfully escalate
privileges from a local user to root (CVE-2016-0728).

Other fixes in this kernel update:
- netfilter: nf_nat_redirect: add missing NULL pointer check
                

References

SRPMS

5/nonfree

5/core