CVE-2017-16994
Description
The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
4.8
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel for Microsoft Azure Cloud systems (USN-3632-1) linux-image-azure_4.13.0.1014.16_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3632-1) linux-image-4.13.0-1014-azure_4.13.0-1014.17_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234