The keyctl_read_key function in security/keys/keyctl.c in the Key Management subcomponent in the Linux kernel before 4.13.5 does not properly consider that a key may be possessed but negatively instantiated, which allows local users to cause a denial of service (OOPS and system crash) via a crafted KEYCTL_READ operation.
3.13.0-142.1914.4.0-98.121~14.04.14.4.0-98.1214.4.0-1039.484.13.0-1005.74.13.0-1002.54.4.0-1033.334.13.0-32.35~16.04.14.4.0-1009.144.4.0-1076.84Exploitability
AV:LAC:LPR:LUI:NScope
S:UImpact
C:NI:NA:HCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H