[PATCH 0/1][SRU][D] CVE-2019-16714: RDS local info leak

Tyler Hicks tyhicks at canonical.com
Mon Sep 23 23:53:57 UTC 2019


 In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c
 allows attackers to obtain sensitive information from kernel stack
 memory because tos and flags fields are not initialized.

Simple backport to D. Clean build logs.


Ka-Cheong Poon (1):
  net/rds: Fix info leak in rds6_inc_info_copy()

 net/rds/recv.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)


More information about the kernel-team mailing list