Linux

Vulnerability CVE-2017-14954 was discovered impacting an unknown function of the file kernel/exit.c of the Kernel Address Space Layout Randomization (KASLR) component. Exploitation of this vulnerability could result in unauthorized local privilege escalation. Linux kernel versions up to and including 4.13.4 are affected. The NJCCIC recommends users and administrators of affected Linux distributions review the VULDB report, follow the Principle of Least Privilege when creating user accounts, carefully and continually monitor privileges on user accounts, and apply a patch or update if one becomes available.