UBUNTU-CVE-2017-13694

Description

The acpi_ps_complete_final_op() function in drivers/acpi/acpica/psobject.c in the Linux kernel through 4.12.9 does not flush the node and node_ext caches and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism (in the kernel through 4.9) via a crafted ACPI table.

CVSS Metrics

• v3.0•MEDIUM•Score: 5.5CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Systems

• ubuntu•linux

  all | all | all | all | all

• ubuntu•linux-allwinner-5.19

  all

• ubuntu•linux-aws

  all | all | all | all | all

• ubuntu•linux-aws-5.0

  all

• ubuntu•linux-aws-5.11

  all

• ubuntu•linux-aws-5.13

  all

• ubuntu•linux-aws-5.15

  all

• ubuntu•linux-aws-5.19

  all

• ubuntu•linux-aws-5.3

  all

• ubuntu•linux-aws-5.4

  all

• ubuntu•linux-aws-5.8

  all

• ubuntu•linux-aws-6.14

  all

• ubuntu•linux-aws-6.17

  all

• ubuntu•linux-aws-6.2

  all

• ubuntu•linux-aws-6.5

  all

• ubuntu•linux-aws-6.8

  all

• ubuntu•linux-aws-fips

  all

• ubuntu•linux-aws-hwe

  all

• ubuntu•linux-azure

  all | all | all | all | all | all

• ubuntu•linux-azure-4.15

  all

• ubuntu•linux-azure-5.11

  all

• ubuntu•linux-azure-5.13

  all

• ubuntu•linux-azure-5.15

  all

• ubuntu•linux-azure-5.19

  all

• ubuntu•linux-azure-5.4

  all

• ubuntu•linux-azure-5.8

  all

• ubuntu•linux-azure-6.11

  all

• ubuntu•linux-azure-6.14

  all

• ubuntu•linux-azure-6.17

  all

• ubuntu•linux-azure-6.2

  all

• ubuntu•linux-azure-6.5

  all

• ubuntu•linux-azure-6.8

  all

• ubuntu•linux-azure-edge

  all

• ubuntu•linux-azure-fde

  all | all | all | all | all

• ubuntu•linux-azure-fde-5.15

  all

• ubuntu•linux-azure-fde-5.19

  all

• ubuntu•linux-azure-fde-6.14

  all

• ubuntu•linux-azure-fde-6.17

  all

• ubuntu•linux-azure-fde-6.2

  all

• ubuntu•linux-azure-fde-6.8

  all

• ubuntu•linux-azure-fips

  all

• ubuntu•linux-azure-nvidia

  all

• ubuntu•linux-azure-nvidia-6.14

  all

• ubuntu•linux-bluefield

  all | all | all

• ubuntu•linux-fips

  all

• ubuntu•linux-gcp

  all | all | all | all | all | all

• ubuntu•linux-gcp-4.15

  all

• ubuntu•linux-gcp-5.11

  all

• ubuntu•linux-gcp-5.13

  all

• ubuntu•linux-gcp-5.15

  all

Showing first 50 affected entries in server-rendered view.

References (5)

• https://ubuntu.com/security/CVE-2017-13694
• https://patchwork.kernel.org/patch/9806085/
• https://github.com/acpica/acpica/pull/278/commits/4a0243ecb4c94e2d73510d096c5ea4d0711fc6c0
• https://github.com/acpica/acpica/pull/278/commits/8829e70e1360c81e7a5a901b5d4f48330e021ea5
• https://www.cve.org/CVERecord?id=CVE-2017-13694