Early Access — Mondoo Vulnerability Intelligence is currently in preview.
The evm_verify_hmac function in security/integrity/evm/evm_main.c in the Linux kernel before 4.5 does not properly copy data, which makes it easier for local users to forge MAC values via a timing side-channel attack.
Exploitability
AV:LAC:LPR:LUI:NScope
S:UImpact
C:NI:HA:N5.5/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N