CVE-2017-5548

Name of the Vulnerable Software and Affected Versions Linux kernel versions 4.9.x before 4.9.6

Description The issue is related to resource management errors in the drivers/net/ieee802154/atusb.c component of the Linux operating system. It can be exploited by a local attacker to cause a denial of service, such as a system crash, or potentially lead to memory corruption. The vulnerability arises from incorrect interaction with the CONFIG VMAP STACK option when using more than one virtual page for a DMA scatterlist.

Recommendations For Linux kernel versions 4.9.x before 4.9.6, update to version 4.9.6 or later to resolve the issue. As a temporary workaround, consider disabling the use of the CONFIG VMAP STACK option or restricting the use of more than one virtual page for a DMA scatterlist to minimize the risk of exploitation.