[PATCH 0/1][SRU][D] CVE-2019-16714: RDS local info leak
Tyler Hicks
tyhicks at canonical.com
Mon Sep 23 23:53:57 UTC 2019
https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-16714
In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c
allows attackers to obtain sensitive information from kernel stack
memory because tos and flags fields are not initialized.
Simple backport to D. Clean build logs.
Tyler
Ka-Cheong Poon (1):
net/rds: Fix info leak in rds6_inc_info_copy()
net/rds/recv.c | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)
--
2.17.1
More information about the kernel-team
mailing list