F5 Networks BIG-IP : Linux kernel vulnerability (SOL16122)
High Nessus Plugin ID 85947
SynopsisThe remote device is missing a vendor-supplied security patch.
Descriptionarch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment (SS) segment register, which allows local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution SOL16122.