Unrated severityNVD Advisory· Published Mar 22, 2013· Updated Apr 29, 2026

CVE-2013-1792

Description

Race condition in the install_user_keyrings function in security/keys/process_keys.c in the Linux kernel before 3.8.3 allows local users to cause a denial of service (NULL pointer dereference and system crash) via crafted keyctl system calls that trigger keyring operations in simultaneous threads.

Affected products

Linux/Kernel3 versions
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=3.8.2
- cpe:2.3:o:linux:linux_kernel:3.8.0:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.1:*:*:*:*:*:*:*

Patches

0da9dfdd2cd9

https://github.com/torvalds/linuxvia osv

commit

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

lists.opensuse.org/opensuse-security-announce/2013-07/msg00018.htmlnvd
lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.htmlnvd
rhn.redhat.com/errata/RHSA-2013-0744.htmlnvd
www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.3nvd
www.mandriva.com/security/advisoriesnvd
www.openwall.com/lists/oss-security/2013/03/07/1nvd
www.ubuntu.com/usn/USN-1787-1nvd
www.ubuntu.com/usn/USN-1788-1nvd
www.ubuntu.com/usn/USN-1792-1nvd
www.ubuntu.com/usn/USN-1793-1nvd
www.ubuntu.com/usn/USN-1794-1nvd
www.ubuntu.com/usn/USN-1795-1nvd
www.ubuntu.com/usn/USN-1796-1nvd
www.ubuntu.com/usn/USN-1797-1nvd
www.ubuntu.com/usn/USN-1798-1nvd
bugzilla.redhat.com/show_bug.cginvd
github.com/torvalds/linux/commit/0da9dfdd2cd9889201bc6f6f43580c99165cd087nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000