QwikSec

Security Database

CVE

CWE

Training

CVE-2017-14954

Published: Oct 1, 2017

Modified: Sep 17, 2024

PUBLISHED

Description

The waitid implementation in kernel/exit.c in the Linux kernel through 4.13.4 accesses rusage data structures in unintended cases, which allows local users to obtain sensitive information, and bypass the KASLR protection mechanism, via a crafted system call.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/torvalds/linux/commit/6c85501f2fabcfc4fc6ed976543d252c4eaf4be9

x_refsource_MISC

https://grsecurity.net/~spender/exploits/wait_for_kaslr_to_be_effective.c

x_refsource_MISC

https://twitter.com/grsecurity/status/914079864478666753

x_refsource_MISC

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6c85501f2fabcfc4fc6ed976543d252c4eaf4be9

x_refsource_MISC

https://twitter.com/_argp/status/914021130712870912

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.