Note:
This project will be discontinued after December 13, 2021. [more]
2018-08-10
The aoedisk_debugfs_show function in drivers/block/aoe/aoeblk.c in the Linux kernel through 4.16.4rc4 allows local users to obtain sensitive address information by reading "ffree: " lines in a debugfs file.
| Products | Linux_kernel |
| Type | DEPRECATED: Information Exposure Through Debug Log Files (CWE-534) |
| First patch | - None (likely due to unavailable code) |
| Links |
• https://github.com/johnsonwangqize/cve-linux/blob/master/CVE-2018-7754.md
• https://elixir.bootlin.com/linux/v4.16-rc4/source/drivers/block/aoe/aoeblk.c#L421 |