CVE-2004-0177 — Vulnetix

CVE-2004-0177 PUBLISHED

Reported by mitre · Published April 16, 2004

The ext3 code in Linux 2.4.x before 2.4.26 does not properly initialize journal descriptor blocks, which causes an information leak in which in-memory data is written to the device for the ext3 file system, which allows privileged users to obtain portions of kernel memory by reading the raw device.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a, *, n/a

Timeline

Apr 16, 2004 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 25, 2023 EPSS Score
Jul 17, 2023 EPSS Score

References

O-127 third-party-advisorygovernment-resourcex_refsource_CIAC
2004-0020 vendor-advisoryx_refsource_TRUSTIX
FLSA:2336 vendor-advisoryx_refsource_FEDORA
DSA-482 vendor-advisoryx_refsource_DEBIAN
DSA-495 vendor-advisoryx_refsource_DEBIAN
DSA-479 vendor-advisoryx_refsource_DEBIAN
linux-ext3-info-disclosure(15867) vdb-entryx_refsource_XF
DSA-480 vendor-advisoryx_refsource_DEBIAN
10152 vdb-entryx_refsource_BID
CLA-2004:846 vendor-advisoryx_refsource_CONECTIVA
DSA-489 vendor-advisoryx_refsource_DEBIAN
DSA-481 vendor-advisoryx_refsource_DEBIAN
oval:org.mitre.oval:def:10556 vdb-entrysignaturex_refsource_OVAL
RHSA-2005:293 vendor-advisoryx_refsource_REDHAT
ESA-20040428-004 vendor-advisoryx_refsource_ENGARDE
RHSA-2004:505 vendor-advisoryx_refsource_REDHAT
O-121 third-party-advisorygovernment-resourcex_refsource_CIAC
O-126 third-party-advisorygovernment-resourcex_refsource_CIAC
RHSA-2004:504 vendor-advisoryx_refsource_REDHAT
MDKSA-2004:029 vendor-advisoryx_refsource_MANDRAKE

…and 4 more

Open in Interactive Console →