> [Suggested description] > The hidma_chan_stats function in drivers/dma/qcom/hidma_dbg.c in the > Linux kernel 4.14.90 allows local users to obtain sensitive address > information by reading "callback=" lines in a debugfs file. > > ------------------------------------------ > > [VulnerabilityType Other] > CWE-200 > > ------------------------------------------ > > [Vendor of Product] > Debian GNU/Linux > > ------------------------------------------ > > [Affected Product Code Base] > Linux - 4.14.90 > > ------------------------------------------ > > [Attack Type] > Local > > ------------------------------------------ > > [Impact Information Disclosure] > true > > ------------------------------------------ > > [Reference] > https://elixir.bootlin.com/linux/v4.14.90/source/drivers/dma/qcom/hidma_dbg.c#L92 > > ------------------------------------------ > [Discoverer] > Fuqian Huang