CVE-2017-13694

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.12.10 Linux kernel versions prior to 4.9 (for KASLR protection mechanism bypass)

Description The issue is related to the acpi ps complete final op() function in the Linux kernel, which does not properly flush node and node ext caches. This can cause a kernel stack dump, allowing local users to obtain sensitive information from kernel memory. Additionally, it can bypass the KASLR protection mechanism via a crafted ACPI table.

Recommendations For Linux kernel versions prior to 4.12.10, update to version 4.12.10 or later to resolve the issue. For Linux kernel versions prior to 4.9, update to version 4.9 or later to prevent KASLR protection mechanism bypass. As a temporary workaround, consider restricting access to crafted ACPI tables until a patch is available.