Xing Gao

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.9.10 **Description** The issue allows local users to discover real PID values by reading the /proc/timer list file. This is related to the print timer function in kernel/time/timer list.c and the timer stats timer set start info function in kernel/time/timer.c. **Recommendations** For Linux kernel versions prior to 4.9.10, update to version 4.9.10 or later to resolve the issue. As a temporary workaround, consider disabling the CONFIG TIMER STATS configuration to minimize the risk of exploitation.