The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message.
2016-06-27T10:59:11.157
2025-04-12T10:46:40.837
Deferred
CVSSv3.0: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | fedoraproject | fedora | 23 | Yes |
| Operating System | suse | linux_enterprise_real_time_extension | 11 | Yes |
| Operating System | fedoraproject | fedora | 24 | Yes |
| Application | suse | linux_enterprise_debuginfo | 11 | Yes |
| Operating System | suse | linux_enterprise_real_time_extension | 12 | Yes |
| Operating System | suse | linux_enterprise_server | 11 | Yes |
| Operating System | redhat | enterprise_linux | 6.0 | Yes |
| Application | suse | suse_linux_enterprise_software_development_kit | 11 | Yes |
| Operating System | suse | linux_enterprise_workstation_extension | 12 | Yes |
| Operating System | redhat | enterprise_linux | 5 | Yes |
| Operating System | suse | linux_enterprise_desktop | 12 | Yes |
| Operating System | suse | opensuse_leap | 42.1 | Yes |
| Operating System | suse | linux_enterprise_server | 11 | Yes |
| Application | suse | suse_linux_enterprise_software_development_kit | 12 | Yes |
| Operating System | fedoraproject | fedora | 22 | Yes |
| Operating System | linux | linux_kernel | ≤ 4.6.3 | Yes |
| Operating System | suse | suse_linux_enterprise_server | 12 | Yes |