Launchpad.net

CVE 2016-2053

The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c.

Related bugs and status

CVE-2016-2053 (Candidate) is related to these bugs:

Bug #1538428: CVE-2016-2053

		In	Importance	Status
1538428	CVE-2016-2053	linux (Ubuntu)	Medium	Invalid
1538428	CVE-2016-2053	linux-fsl-imx51 (Ubuntu)	Medium	Invalid
1538428	CVE-2016-2053	linux-mvl-dove (Ubuntu)	Undecided	New
1538428	CVE-2016-2053	linux-lts-backport-maverick (Ubuntu)	Undecided	New
1538428	CVE-2016-2053	linux-lts-backport-natty (Ubuntu)	Undecided	New
1538428	CVE-2016-2053	linux-ti-omap4 (Ubuntu)	Medium	Invalid
1538428	CVE-2016-2053	linux-ec2 (Ubuntu)	Undecided	New
1538428	CVE-2016-2053	linux (Ubuntu Xenial)	Medium	Invalid
1538428	CVE-2016-2053	linux-ec2 (Ubuntu Xenial)	Undecided	New
1538428	CVE-2016-2053	linux-fsl-imx51 (Ubuntu Xenial)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-backport-maverick (Ubuntu Xenial)	Undecided	New
1538428	CVE-2016-2053	linux-lts-backport-natty (Ubuntu Xenial)	Undecided	New
1538428	CVE-2016-2053	linux-mvl-dove (Ubuntu Xenial)	Undecided	New
1538428	CVE-2016-2053	linux-ti-omap4 (Ubuntu Xenial)	Medium	Invalid
1538428	CVE-2016-2053	linux (Ubuntu Wily)	Medium	Fix Committed
1538428	CVE-2016-2053	linux-ec2 (Ubuntu Wily)	Undecided	New
1538428	CVE-2016-2053	linux-fsl-imx51 (Ubuntu Wily)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-backport-maverick (Ubuntu Wily)	Undecided	New
1538428	CVE-2016-2053	linux-lts-backport-natty (Ubuntu Wily)	Undecided	New
1538428	CVE-2016-2053	linux-mvl-dove (Ubuntu Wily)	Undecided	New
1538428	CVE-2016-2053	linux-ti-omap4 (Ubuntu Wily)	Medium	Invalid
1538428	CVE-2016-2053	linux (Ubuntu Vivid)	Medium	Won't Fix
1538428	CVE-2016-2053	linux-ec2 (Ubuntu Vivid)	Undecided	New
1538428	CVE-2016-2053	linux-fsl-imx51 (Ubuntu Vivid)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-backport-maverick (Ubuntu Vivid)	Undecided	New
1538428	CVE-2016-2053	linux-lts-backport-natty (Ubuntu Vivid)	Undecided	New
1538428	CVE-2016-2053	linux-mvl-dove (Ubuntu Vivid)	Undecided	New
1538428	CVE-2016-2053	linux-ti-omap4 (Ubuntu Vivid)	Medium	Invalid
1538428	CVE-2016-2053	linux (Ubuntu Trusty)	Medium	Fix Committed
1538428	CVE-2016-2053	linux-ec2 (Ubuntu Trusty)	Undecided	New
1538428	CVE-2016-2053	linux-fsl-imx51 (Ubuntu Trusty)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-backport-maverick (Ubuntu Trusty)	Undecided	New
1538428	CVE-2016-2053	linux-lts-backport-natty (Ubuntu Trusty)	Undecided	New
1538428	CVE-2016-2053	linux-mvl-dove (Ubuntu Trusty)	Undecided	New
1538428	CVE-2016-2053	linux-ti-omap4 (Ubuntu Trusty)	Medium	Invalid
1538428	CVE-2016-2053	linux (Ubuntu Precise)	Medium	Invalid
1538428	CVE-2016-2053	linux-ec2 (Ubuntu Precise)	Undecided	Won't Fix
1538428	CVE-2016-2053	linux-fsl-imx51 (Ubuntu Precise)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-backport-maverick (Ubuntu Precise)	Undecided	Won't Fix
1538428	CVE-2016-2053	linux-lts-backport-natty (Ubuntu Precise)	Undecided	Won't Fix
1538428	CVE-2016-2053	linux-mvl-dove (Ubuntu Precise)	Undecided	Won't Fix
1538428	CVE-2016-2053	linux-ti-omap4 (Ubuntu Precise)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-trusty (Ubuntu)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-trusty (Ubuntu Precise)	Medium	Won't Fix
1538428	CVE-2016-2053	linux-lts-trusty (Ubuntu Trusty)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-trusty (Ubuntu Vivid)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-trusty (Ubuntu Wily)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-trusty (Ubuntu Xenial)	Medium	Invalid
1538428	CVE-2016-2053	linux-armadaxp (Ubuntu)	Medium	Invalid
1538428	CVE-2016-2053	linux-armadaxp (Ubuntu Precise)	Medium	Invalid
1538428	CVE-2016-2053	linux-armadaxp (Ubuntu Trusty)	Medium	Invalid
1538428	CVE-2016-2053	linux-armadaxp (Ubuntu Vivid)	Medium	Invalid
1538428	CVE-2016-2053	linux-armadaxp (Ubuntu Wily)	Medium	Invalid
1538428	CVE-2016-2053	linux-armadaxp (Ubuntu Xenial)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-wily (Ubuntu)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-wily (Ubuntu Precise)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-wily (Ubuntu Trusty)	Medium	Fix Committed
1538428	CVE-2016-2053	linux-lts-wily (Ubuntu Vivid)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-wily (Ubuntu Wily)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-wily (Ubuntu Xenial)	Medium	Invalid
1538428	CVE-2016-2053	linux-goldfish (Ubuntu)	Medium	New
1538428	CVE-2016-2053	linux-goldfish (Ubuntu Precise)	Medium	Invalid
1538428	CVE-2016-2053	linux-goldfish (Ubuntu Trusty)	Medium	Invalid
1538428	CVE-2016-2053	linux-goldfish (Ubuntu Vivid)	Medium	Invalid
1538428	CVE-2016-2053	linux-goldfish (Ubuntu Wily)	Medium	New
1538428	CVE-2016-2053	linux-goldfish (Ubuntu Xenial)	Medium	New
1538428	CVE-2016-2053	linux-lts-saucy (Ubuntu)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-saucy (Ubuntu Precise)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-saucy (Ubuntu Trusty)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-saucy (Ubuntu Vivid)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-saucy (Ubuntu Wily)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-saucy (Ubuntu Xenial)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-quantal (Ubuntu)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-quantal (Ubuntu Precise)	Medium	Invalid
1538428	CVE-2016-2053	linux-lts-quantal (Ubuntu Trusty)	Medium	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2016-2053

Related bugs and status

Related bugs

References