CVE-2017-14954

2017-10-02T15:19:55
ID RH:CVE-2017-14954
Type redhatcve
Reporter redhat.com
Modified 2020-04-08T19:33:25

Description

The waitid implementation in kernel/exit.c in the Linux kernel through 4.13.4 accesses rusage data structures in unintended cases. This can allow local users to obtain sensitive information and bypass the KASLR protection mechanism via a crafted system call.