A kernel information leak flaw was identified in the scsiioctl function in drivers/scsi/scsiioctl.c in the Linux kernel. This flaw allows a local attacker with a special user privilege (CAPSYSADMIN or CAPSYSRAWIO) to create issues with confidentiality.