Linn Crosetto

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue allows local users to simulate hardware errors, leading to a denial of service. This is due to the failure to disable APEI error injection through the `einj error inject` function in drivers/acpi/apei/einj.c when securelevel is set. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions as used in Red Hat Enterprise Linux 7.2 and Red Hat Enterprise MRG 2 **Description** The issue allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd when the system is booted with UEFI Secure Boot enabled. **Recommendations** For Red Hat Enterprise Linux 7.2 and Red Hat Enterprise MRG 2, consider disabling UEFI Secure Boot or restricting the appending of ACPI tables to the initrd until a patch is available.