CVE-2017-14156

2017-09-05T17:29:00
ID CVE-2017-14156
Type cve
Reporter cve@mitre.org
Modified 2018-03-16T01:29:00

Description

The atyfb_ioctl function in drivers/video/fbdev/aty/atyfb_base.c in the Linux kernel through 4.12.10 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading locations associated with padding bytes.