CVE-2014-9903

Name of the Vulnerable Software and Affected Versions Linux kernel versions 3.14-rc through 3.14-rc3

Description The issue allows local users to obtain sensitive information from kernel stack memory. This is due to the sched read attr function in kernel/sched/core.c using an incorrect size when handling a crafted sched getattr system call.

Recommendations For Linux kernel versions 3.14-rc through 3.14-rc3, update to version 3.14-rc4 or later to resolve the issue.