Back to search
CVE-2004-0177
Published: Apr 16, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
The ext3 code in Linux 2.4.x before 2.4.26 does not properly initialize journal descriptor blocks, which causes an information leak in which in-memory data is written to the device for the ext3 file system, which allows privileged users to obtain portions of kernel memory by reading the raw device.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
O-127
third-party-advisory
government-resource
x_refsource_CIAC
2004-0020
vendor-advisory
x_refsource_TRUSTIX
FLSA:2336
vendor-advisory
x_refsource_FEDORA
DSA-482
vendor-advisory
x_refsource_DEBIAN
DSA-495
vendor-advisory
x_refsource_DEBIAN
DSA-479
vendor-advisory
x_refsource_DEBIAN
linux-ext3-info-disclosure(15867)
vdb-entry
x_refsource_XF
DSA-480
vendor-advisory
x_refsource_DEBIAN
10152
vdb-entry
x_refsource_BID
CLA-2004:846
vendor-advisory
x_refsource_CONECTIVA
DSA-489
vendor-advisory
x_refsource_DEBIAN
DSA-481
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:10556
vdb-entry
signature
x_refsource_OVAL
RHSA-2005:293
vendor-advisory
x_refsource_REDHAT
ESA-20040428-004
vendor-advisory
x_refsource_ENGARDE
RHSA-2004:505
vendor-advisory
x_refsource_REDHAT
O-121
third-party-advisory
government-resource
x_refsource_CIAC
O-126
third-party-advisory
government-resource
x_refsource_CIAC
RHSA-2004:504
vendor-advisory
x_refsource_REDHAT
MDKSA-2004:029
vendor-advisory
x_refsource_MANDRAKE
GLSA-200407-02
vendor-advisory
x_refsource_GENTOO
RHSA-2004:166
vendor-advisory
x_refsource_REDHAT
DSA-491
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now