The securitycontexttosidcore function in security/selinux/ss/services.c in the Linux kernel before 3.13.4 allows local users to cause a denial of service (system crash) by leveraging the CAPMACADMIN capability to set a zero-length security context.
{ "urgency": "not yet assigned" }