VYPR
Low severity3.3NVD Advisory· Published Dec 27, 2017· Updated Jun 17, 2026

CVE-2017-17864

CVE-2017-17864

Description

kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."

Affected products

62

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.