Arbitrary Kernel Address Dump Vulnerability in Linux Kernel's show_opcodes()

Arbitrary Kernel Address Dump Vulnerability in Linux Kernel's show_opcodes()

CVE-2018-14656 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

A missing address check in the callers of the show_opcodes() in the Linux kernel allows an attacker to dump the kernel memory at an arbitrary kernel address into the dmesg log.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.