CVE-2017-5967
Description
The time subsystem in the Linux kernel through 4.9.9, when CONFIG_TIMER_STATS is enabled, allows local users to discover real PID values (as distinguished from PID values inside a PID namespace) by reading the /proc/timer_list file, related to the print_timer function in kernel/time/timer_list.c and the __timer_stats_timer_set_start_info function in kernel/time/timer.c.
Risk Information
Base Score
4.0
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.048
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-4904-1) linux-image-aws_4.4.0.1126.131_amd64.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-kvm_4.4.0.1091.89_amd64.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-generic_4.4.0.208.214_i386.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-generic_4.4.0.208.214_amd64.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-virtual_4.4.0.208.214_i386.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-virtual_4.4.0.208.214_amd64.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-lowlatency_4.4.0.208.214_i386.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-lowlatency_4.4.0.208.214_amd64.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-4.4.0-1091-kvm_4.4.0-1091.100_amd64.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-4.4.0-1126-aws_4.4.0-1126.140_amd64.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-4.4.0-208-generic_4.4.0-208.240_i386.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-4.4.0-208-generic_4.4.0-208.240_amd64.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-4.4.0-208-lowlatency_4.4.0-208.240_i386.deb | Linux |
| Linux kernel (USN-4904-1) linux-image-4.4.0-208-lowlatency_4.4.0-208.240_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234