Lucene search

K
redhatcveRedhat.comRH:CVE-2020-10774
HistoryJun 15, 2020 - 2:39 p.m.

CVE-2020-10774

2020-06-1514:39:44
redhat.com
access.redhat.com
18
linux kernel
sysctl subsystem
memory disclosure
local user
uninitialized values
cve-2020-10774
confidentiality
red hat product security

EPSS

0

Percentile

5.1%

A flaw memory disclosure flaw was found in the Linux kernel’s sysctl subsystem in reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.

Mitigation

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.