A vulnerability was found in the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized. Reference: https://github.com/torvalds/linux/commit/7d0a06586b2686ba80c4a2da5f91cb10ffbea736 https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.2.14
This was fixed for Fedora with the 5.2.14 stable updates.
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1756412]
Red Hat products are not affected as they do not contain the source code required to leak the information to userspace.