CVE-2017-5549

2017-02-06T06:59:00
ID CVE-2017-5549
Type cve
Reporter cve@mitre.org
Modified 2018-08-24T10:29:00

Description

The klsi_105_get_line_state function in drivers/usb/serial/kl5kusb105.c in the Linux kernel before 4.9.5 places uninitialized heap-memory contents into a log entry upon a failure to read the line status, which allows local users to obtain sensitive information by reading the log.