The cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c in the Linux kernel before 4.16.6 allows local attackers to use a incorrect bounds check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel memory.
3.13.0-157.2074.4.0-1023.234.4.0-128.154~14.04.14.4.0-128.1544.4.0-1061.704.15.0-1014.14~16.04.14.15.0-1014.14~16.04.14.15.0-24.26~16.04.14.4.0-1027.324.4.0-1091.99Exploitability
AV:LAC:LPR:LUI:NScope
S:UImpact
C:NI:NA:HCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H