Launchpad CVE tracker

CVE 2005-0400

The ext2_make_empty function call in the Linux kernel before 2.6.11.6 does not properly initialize memory when creating a block for a new directory entry, which allows local users to obtain potentially sensitive information by reading the block.

Related bugs and status

CVE-2005-0400 (Candidate) is related to these bugs:

Bug #14983: [warty] CAN-2005-0937: DoS in futex handling

Summary				In	Importance	Status
	14983	[warty] CAN-2005-0937: DoS in futex handling		linux-source-2.6.15 (Ubuntu)	High	Fix Released
	14983	[warty] CAN-2005-0937: DoS in futex handling		linux-source-2.6.15 (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://arkoon.net/advi...
MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://marc.info/?l=bu...
MISC: http://www.vupen.com/e...
MISC: https://bugzilla.redha...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: https://usn.ubuntu.com...
MISC: http://kernel.org/pub/...
MISC: https://exchange.xforc...
MISC: https://oval.cisecurit...

Launchpad.net

CVE 2005-0400

Related bugs and status

Related bugs

References