VDB

CVE-2019-16714

CVE-2019-16714 PUBLISHED

In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.

EPSS 1.12% · 78.6th percentile

Risk Scores

EPSS Score
1.12%
78.6th percentile

Affected Products

VendorProductVersions
Ubuntu:18.04:LTSlinux-oem-osp15.0.0-1024.27, 5.0.0-1022.24, 5.0.0-1020.22
Ubuntu:Pro:14.04:LTSlinux-aws4.4.0-1129.135, 4.4.0-1128.134, 4.4.0-1127.133
Ubuntu:18.04:LTSlinux-gke-5.00, *, *
Ubuntu:Pro:14.04:LTSlinux-azure4.15.0-1063.68~14.04.1, *, *
Ubuntu:18.04:LTSlinux-hwe0, *, 4.18.0-25.26~18.04.1
Ubuntu:18.04:LTSlinux-hwe-edge5.0.0-15.16~18.04.1, 5.0.0-16.17~18.04.1, 5.0.0-17.18~18.04.1
Ubuntu:Pro:14.04:LTSlinux3.13.0-166.216, 0, 3.12.0-1.3
Ubuntu:Pro:14.04:LTSlinux-lts-xenial4.4.0-138.164~14.04.1, 4.4.0-193.224~14.04.1, 4.4.0-190.220~14.04.1
Ubuntu:18.04:LTSlinux-gcp4.15.0-1018.19, 4.15.0-1019.20, 4.15.0-1021.22
Ubuntu:18.04:LTSlinux-azure4.18.0-1024.25~18.04.1, 4.18.0-1025.27~18.04.1, 5.0.0-1014.14~18.04.1

Exploit Intelligence

Timeline

  • Sep 23, 2019 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›