The __clear_user function in arch/arm64/lib/clear_user.S in the Linux kernel before 3.17.4 on the ARM64 platform allows local users to cause a denial of service (system crash) by reading one byte beyond a /dev/zero page boundary.
https://bugzilla.redhat.com/show_bug.cgi?id=1163744
http://secunia.com/advisories/62305
https://github.com/torvalds/linux/commit/97fc15436b36ee3956efad83e22a557991f7d19d
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.4
Published: 2014-11-30
Base Score: 4.9
Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C
Severity: Medium