CVE-2017-13694 -- linux-imageID: oval:org.secpod.oval:def:2001074 | Date: (C)2019-06-03 (M)2024-05-22 |
Class: VULNERABILITY | Family: unix |
The acpi_ps_complete_final_op function in drivers/acpi/acpica/psobject.c in the Linux kernel through 4.12.9 does not flush the node and node_ext caches and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted ACPI table.
Platform: |
Debian 8.x |
Debian 9.x |
Product: |
linux-image-4.9 |
linux-image-3.16 |