Linux kernel built with the YAM modem driver for AX.25(CONFIG_YAM) is vulnerable to an information leakage flaw. It could occur while doing an ioctl(SIOCYAMGCFG) call. A user/program with CAP_NET_ADMIN privileges could use this flaw to leak (four)kernel memory bytes. Upstream fix: ------------- -> https://git.kernel.org/linus/8e3fbf870481eb53b2d3a322d1fc395ad8b367ed Reference: ---------- -> http://www.openwall.com/lists/oss-security/2014/01/15/3
Statement: This issue does not affect the versions of the kernel package as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2.
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1053647]
kernel-3.12.8-200.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.
kernel-3.12.8-300.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.