** Changed in: linux-snapdragon (Ubuntu Precise) Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Precise) Importance: Undecided => Medium ** Changed in: linux-snapdragon (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Wily) Importance: Undecided => Medium ** Changed in: linux-snapdragon (Ubuntu Xenial) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Xenial) Importance: Undecided => Medium ** Changed in: linux-snapdragon (Ubuntu Yakkety) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Yakkety) Importance: Undecided => Medium ** Changed in: linux-snapdragon (Ubuntu Trusty) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Trusty) Importance: Undecided => Medium ** Description changed: - [Denial of service with specially crafted key file] + The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel + before 4.3 allows attackers to cause a denial of service (panic) via an + ASN.1 BER file that lacks a public key, leading to mishandling by the + public_key_verify_signature function in + crypto/asymmetric_keys/public_key.c. Break-Fix: 3d167d68e3805ee45ed2e8412fc03ed919c54c24 0d62e9dd6da45bbf0f33a8617afc5fe774c8f45f -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1538428 Title: CVE-2016-2053 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1538428/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs