In the Linux kernel before 5.2.14, rds6incinfo_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.
{ "urgency": "not yet assigned" }