Description
In the Linux kernel before 4.17, hns_roce_alloc_ucontext in drivers/infiniband/hw/hns/hns_roce_main.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425813.
References (2)
Core 2
Core References
Patch, Third Party Advisory x_refsource_misc
https://github.com/torvalds/linux/commit/df7e40425813c50cd252e6f5e348a81ef1acae56
Patch, Vendor Advisory x_refsource_misc
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=df7e40425813c50cd252e6f5e348a81ef1acae56
Scores
CVSS v3
7.5
EPSS
0.0199
EPSS Percentile
78.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-665
Status
published
Products (1)
linux/linux_kernel
< 4.17
Published
Sep 27, 2019
Tracked Since
Feb 18, 2026