What the vulnerability does

01Description

A memory disclosure flaw was found in the Linux kernel's versions before 4.18.0-193.el8 in the sysctl subsystem when reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.

Key dates

02Disclosure timeline

May 27, 2021 CVE published
August 4, 2024 Record updated