VYPR
Medium severity5.5NVD Advisory· Published Oct 2, 2017· Updated Jun 17, 2026

CVE-2017-14954

CVE-2017-14954

Description

The waitid implementation in kernel/exit.c in the Linux kernel through 4.13.4 accesses rusage data structures in unintended cases, which allows local users to obtain sensitive information, and bypass the KASLR protection mechanism, via a crafted system call.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Linux/Kernel2 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=4.13.4
    • (no CPE)range: <=4.13.4

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.