A security vulnerability that could allow an external attacker to escalate privileges and execute malicious code puts the Linux kernel at risk. The vulnerability impacts the Advanced Linux Sound Architecture (ALSA), which is a software framework that establishes an application programming interface (API) for sound card drivers. The ALSA code in the kernel enables attackers to call a function, erase its output and still use the output in a subsequent function. The bug has been tracked as a security vulnerability and assigned the identifier CVE-2017-15265. The patch is now being pushed to the community from an array of Linux distributors.”]
Source: https://securityintelligence.com/news/security-vulnerability-puts-linux-kernel-at-risk/