Incorrect Data Type Vulnerability in Linux Kernel's net/rds/sysctl.c

Incorrect Data Type Vulnerability in Linux Kernel's net/rds/sysctl.c

CVE-2015-2042 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

net/rds/sysctl.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.