CVE-2018-20855

Published
View on NVD ↗
CVSS v3
3.3
LOW
CVSS v2
2.1
LOW
Affected
1
PROJECT

Description

An issue was discovered in the Linux kernel before 4.18.7. In create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized, resulting in a leak of stack memory to userspace.

torvalds/linux
torvalds/linux
Linux kernel source tree
GitHubGitHub
237K