ACK: [PATCH 1/1][SRU][B/C/D] CVE-2018-14625 - AF_VSOCK info leak

Khaled Elmously khalid.elmously at
Thu Dec 20 04:45:04 UTC 2018

On 2018-12-18 01:07:39 , Tyler Hicks wrote:
>  A flaw was found in the Linux Kernel where an attacker may be able to have
>  an uncontrolled read to kernel-memory from within a vm guest. A race
>  condition between connect() and close() function may allow an attacker
>  using the AF_VSOCK protocol to gather a 4 byte information leak or possibly
>  intercept or corrupt AF_VSOCK messages destined to other clients.
> This is a clean cherry pick to Bionic, Cosmic, and Disco/4.19. The
> unstable/4.20 tree already has the fix applied.
> Tyler
Acked-by: Khalid Elmously <khalid.elmously at>

More information about the kernel-team mailing list