CVE-2014-0206

2014-06-25T11:19:00
ID CVE-2014-0206
Type cve
Reporter cve@mitre.org
Modified 2018-12-13T18:24:00

Description

Array index error in the aio_read_events_ring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value. Per: http://cwe.mitre.org/data/definitions/129.html

"CWE-129: Improper Validation of Array Index"