OSVDB ID: 15115

Title: Linux Kernel ext2 Directory Creation Arbitrary Memory Disclosure

Info

Disclosure
Mar 25, 2005

Discovery
Mar 15, 2005

Dates

Exploit
Jan 01, 2001

Solution
Unknown

Description

 The Linux kernel EXT2 filesystem contains a flaw that may lead to an unauthorized information disclosure. The problem is that the 'ext2_make_empty()' function does not properly clear filesystem contents when creating a directory and the block written to store the '.' and '..' directory entries remains uninitialized. Up to 4,072 bytes of kernel memory may be leaked on each directory creation, which may allow a malicious user to disclose sensitive kernel memory contents resulting in a loss of confidentiality.

Classification

 Location: Local Access Required
Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Exploit: Exploit Unknown
Disclosure: Vendor Verified

Solution

 Upgrade to version 2.4.30-rc2, 2.6.11.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Linux Kernel Organization, Inc.

Kernel

 2.6
2.6.1
2.6.2
2.6.3
2.6.4
2.6.5
2.6.6
2.6.7
2.6.8
2.6.9
2.6.10
2.6.11
2.6.11.1
2.6.11.2
2.6.11.3
2.6.11.4
2.6.11.5
2.4.30-rc1
2.4.30-pre3
2.4.30-pre2
2.4.30-pre1
2.4.29

References

Credit
  • Mathieu Lafon - mlafonarkoon.net - Arkoon Network Security


Direct URL: http://osvdb.org/15115