Kangjie Lu

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.3.8 **Description** The issue is related to the function `rcar drif g fmt sdr cap` in the Linux kernel, specifically in the file `drivers/media/platform/rcar drif.c`. It is caused by the uninitialized variable `f->fmt.sdr.reserved`, which could lead to a memory disclosure problem. This could potentially allow an attacker to gain unauthorized access to protected information. **Recommendations** For Linux kernel versions prior to 5.3.8, update to version 5.3.8 or later to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.6.4 **Description** The issue is related to the `tipc nl compat link dump` function in `net/tipc/netlink compat.c`, which does not properly copy a certain string. This allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message. **Recommendations** For Linux kernel versions prior to 4.6.4, update to version 4.6.4 or later to resolve the issue. As a temporary workaround, consider restricting access to Netlink messages to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.6.4 **Description** The issue is related to the `rds inc info copy` function in the Linux kernel, which does not properly initialize a certain structure member. This allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message. **Recommendations** For Linux kernel versions prior to 4.6.4, update to version 4.6.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.5.5 **Description** The issue concerns the rtnl fill link ifmap function in the Linux kernel, which fails to initialize a certain data structure. This allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message. **Recommendations** For versions prior to 4.5.5, update to version 4.5.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.5.5 **Description** The issue is related to the x25 negotiate facilities function in the Linux kernel, which does not properly initialize a certain data structure. This allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request. **Recommendations** For Linux kernel versions prior to 4.5.5, update to version 4.5.5 or later to resolve the issue. As a temporary workaround, consider restricting access to X.25 Call Request functionality until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.7 **Description** The issue is related to the snd timer user params function in the sound/core/timer.c file of the Linux kernel. This function does not properly initialize a certain data structure, allowing local users to obtain sensitive information from kernel stack memory. This can be achieved through crafted use of the ALSA timer interface. **Recommendations** For Linux kernel versions prior to 4.7, update to version 4.7 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.7 **Description** The issue concerns the proc connectinfo function in the Linux kernel, which fails to initialize a certain data structure. This allows local users to obtain sensitive information from kernel stack memory by making a crafted USBDEVFS CONNECTINFO ioctl call. **Recommendations** For Linux kernel versions prior to 4.7, update to version 4.7 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.5.5 **Description** The issue is related to the `llc cmsg rcv` function in the Linux kernel, which fails to initialize a certain data structure. This allows attackers to obtain sensitive information from kernel stack memory by reading a message. **Recommendations** For versions prior to 4.5.5, update to version 4.5.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 7 **Description** The issue concerns the Telephony subsystem, which does not enforce API conformity for access to telephony-daemon interfaces. This allows attackers to bypass intended restrictions on phone calls by using a crafted app that sends direct requests to the daemon. **Recommendations** For versions prior to 7, update to version 7 or later to resolve the issue.