An information leak vulnerability in [llc] module was found in "net/llc/af_llc.c". The stack object "info" has a total size of 12 bytes. Its last byte is padding which is not initialized and leaked via put_cmsg().
CVE-ID request and assignment:
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1333321]
kernel-4.5.4-300.fc24 has been pushed to the Fedora 24 stable repository. If problems still persist, please make note of it in this bug report.
kernel-4.4.9-200.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and MRG-2 as the related code with the flaw is not present in the products listed.
kernel-4.5.5-201.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.