CVE-2019-16714
Summary
| CVE | CVE-2019-16714 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2019-09-23 12:15:00 UTC |
|---|
| Updated | 2023-11-07 03:05:00 UTC |
|---|
| Description | In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| net/rds: Fix info leak in rds6_inc_info_copy() · torvalds/linux@7d0a065 · GitHub |
MISC |
github.com |
Patch, Third Party Advisory |
| oss-security - CVE-2019-16714: info leak in RDS rds6_inc_info_copy |
MLIST |
www.openwall.com |
|
| support.f5.com/csp/article/K48351130 |
CONFIRM |
support.f5.com |
|
| oss-security - CVE-2019-16714: Linux kernel net/rds: info leak
vulnerability in rds6_inc_info_copy |
MLIST |
www.openwall.com |
|
| cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.2.14 |
MISC |
cdn.kernel.org |
Mailing List, Vendor Advisory |
| USN-4157-1: Linux kernel vulnerabilities | Ubuntu security notices | Ubuntu |
UBUNTU |
usn.ubuntu.com |
|
| USN-4157-2: Linux kernel (HWE) vulnerabilities | Ubuntu security notices |
UBUNTU |
usn.ubuntu.com |
|
| myF5 |
|
support.f5.com |
|
| October 2019 Linux Kernel Vulnerabilities in NetApp Products | NetApp Product Security |
CONFIRM |
security.netapp.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 376882 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX2-SA-2019:0121)
