Vulnerabilities

CVE-2016-5244

by Fred · 27/06/2016

The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message.

Date published : 2016-06-27

http://www.securityfocus.com/bid/91021

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4116def2337991b39919f3b448326e21c40e0dbb

Similar

Tags: Cybersecurity Alert