Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message.
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- http://www.ubuntu.com/usn/USN-3070-4
No PoCs found on GitHub currently.