CVE-2017-0648

Name of the Vulnerable Software and Affected Versions Linux Kernel versions prior to 3.10 Android Kernel-3.10

Description The issue is related to a debugger in the Linux kernel's FIQ, which has inadequate access control. This could allow a remote attacker to elevate privileges and execute arbitrary code within the kernel context using a local malicious application. The problem is considered serious due to the potential for local permanent device compromise, which might necessitate reflashing the operating system to repair the device.

Recommendations For Linux Kernel versions prior to 3.10: Update to a version that includes the necessary security patches to fix the access control issues in the kernel's FIQ debugger. For Android Kernel-3.10: Consider applying security patches or updates provided by the device manufacturer to address the elevation of privilege vulnerability in the kernel FIQ debugger.