Sensitive Address Information Disclosure in Linux Kernel ACPI SBS HC printk Call

CVE-2018-5750 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.