An issue was discovered in the Linux kernel before 4.18.7. In create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized, resulting in a leak of stack memory to userspace.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-07-26T04:39:40

Updated: 2024-08-05T12:12:29.320Z

Reserved: 2019-07-26T00:00:00

Link: CVE-2018-20855

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-07-26T05:15:10.423

Modified: 2024-11-21T04:02:19.263

Link: CVE-2018-20855

cve-icon Redhat

Severity : Moderate

Publid Date: 2019-07-26T00:00:00Z

Links: CVE-2018-20855 - Bugzilla