Description of problem:
The EQL_GETMASTRCFG device ioctl allows unprivileged users to read 16 bytes of uninitialized stack memory, because the "master_name" member of the master_config_t struct declared on the stack in eql_g_master_cfg() is not altered or zeroed before being copied back to the user.
Red Hat would like to thank Dan Rosenberg for reporting this issue.
This is 44467187dc22fdd33a1a06ea0ba86ce20be3fe3c
in David Miller's git repo
This issue has been addressed in following products:
MRG for RHEL-5
Via RHSA-2010:0771 https://rhn.redhat.com/errata/RHSA-2010-0771.html
This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, and 5 as they did not include support for equalizer load-balancer for serial network interfaces. This was addressed in Red Hat Enterprise Linux Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2010-0771.html.