CVE-2016-2085 in Linuxinformation

Résumé

par MITRE

The evm_verify_hmac function in security/integrity/evm/evm_main.c in the Linux kernel before 4.5 does not properly copy data, which makes it easier for local users to forge MAC values via a timing side-channel attack.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

27/01/2016

Divulgation

27/04/2016

Modérer

accepté

Entrée

VDB-82952

CPE

prêt

EPSS

0.00442

KEV

non

Activités

très faible

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!