[kernel] r5185 - patch-tracking

Moritz Muehlenhoff jmm-guest at costa.debian.org
Tue Jan 3 00:18:19 UTC 2006


Author: jmm-guest
Date: Tue Jan  3 00:18:18 2006
New Revision: 5185

Added:
   patch-tracking/CVE-2004-0133
Log:
older XFS issue


Added: patch-tracking/CVE-2004-0133
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2004-0133	Tue Jan  3 00:18:18 2006
@@ -0,0 +1,28 @@
+Candidate: CVE-2004-0133
+References:
+ http://www.linuxsecurity.com/advisories/engarde_advisory-4285.html
+ http://security.gentoo.org/glsa/glsa-200407-02.xml
+ http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:029
+ ftp://patches.sgi.com/support/free/security/advisories/20040405-01-U.asc
+ http://marc.theaimsgroup.com/?l=bugtraq&m=108213675028441&w=2
+ http://www.securityfocus.com/bid/10151
+ http://secunia.com/advisories/11362
+ http://xforce.iss.net/xforce/xfdb/15901
+Description:
+ The XFS file system code in Linux 2.4.x has an information leak in which
+ in-memory data is written to the device for the XFS file system, which
+ allows local users to obtain sensitive information by reading the raw device.
+Notes: 
+ jmm> Woody is not affected, as XFS was only added to the kernel in 2.4.25
+Bugs: 
+upstream: released (2.4.26-rc2) 
+linux-2.6:
+2.6.8-sarge-security: 
+2.4.27-sarge-security: 
+2.6.8: 
+2.4.19-woody-security: N/A
+2.4.18-woody-security: N/A
+2.4.17-woody-security: N/A
+2.4.16-woody-security: N/A
+2.4.17-woody-security-hppa: N/A
+2.4.17-woody-security-ia64: N/A



More information about the Kernel-svn-changes mailing list