The driver_override implementation in drivers/base/platform.c in the Linux kernel before 4.12.1 allows local users to gain privileges by leveraging a race condition between a read operation and a store operation that involve different overrides.
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6265539776a0810b7ce6398c27866ddb9c6bd154
www.debian.org/security/2017/dsa-3981
www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.1
www.securityfocus.com/bid/100651
bugzilla.redhat.com/show_bug.cgi?id=1489078
bugzilla.suse.com/show_bug.cgi?id=1057474
github.com/torvalds/linux/commit/6265539776a0810b7ce6398c27866ddb9c6bd154
source.android.com/security/bulletin/2017-09-01