Linux kernel through 5.3.8 Information Exposure Vulnerability

Summary

Linux kernel through 5.3.8 suffers from information exposure vulnerability.

 

 

 

 

 

Credit:

The information has been provided by Hans Verkuil

The original article can be found at:https://patchwork.linuxtv.org/patch/59542/


Details

In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitialized in rcar_drif_g_fmt_sdr_cap in drivers/media/platform/rcar_drif.c, which could cause a memory disclosure problem.

 

Vulnerable Systems:

Linux kernel through 5.3.8

 

CVE Information:

CVE-2019-18786

 

Disclosure Timeline:
Published Date:11/5/2019