Linux kernel built with compat ioctl interface for network devices is vulnerable to an information leakage flaw. It occurs while doing ioctl SIOCGIFCONF call. An unprivileged user could use this flaw to leak kernel memory bytes. Upstream fix: ------------- -> https://git.kernel.org/linus/43da5f2e0d0c69ded3d51907d9552310a6b545e8 Reference: ---------- -> http://www.openwall.com/lists/oss-security/2013/03/14/21
Statement: This issue does not affect the versions of the kernel package as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2.