CVE-2017-13693 -- linux-imageID: oval:org.secpod.oval:def:2001558 | Date: (C)2019-06-02 (M)2024-04-17 |
Class: VULNERABILITY | Family: unix |
The acpi_ds_create_operands function in drivers/acpi/acpica/dsutils.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted ACPI table.
Platform: |
Debian 8.x |
Debian 9.x |
Product: |
linux-image-4.9 |
linux-image-3.16 |