Note:
This project will be discontinued after December 13, 2021. [more]
2018-08-07
The pcpu_embed_first_chunk function in mm/percpu.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data from a "pages/cpu" printk call.
| Products | Linux_kernel |
| Type | Information Exposure (CWE-200) |
| First patch | - None (likely due to unavailable code) |
| Links |
• https://lists.debian.org/debian-lts-announce/2019/05/msg00042.html
• http://www.securityfocus.com/bid/105049 • https://github.com/johnsonwangqize/cve-linux/blob/master/CVE-2018-5995.md • https://lists.debian.org/debian-lts-announce/2019/05/msg00041.html |