CVE-2004-0685

Currently unrated

Key Information:

Vendor: Linux
Status: Linux Kernel; Secure Linux; Enterprise Linux Desktop; Enterprise Linux
Vendor: CVE Published:; 23 December 2004

Summary

Certain USB drivers in the Linux 2.4 kernel use the copy_to_user function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cleared from previous usage.

References

http://secunia.com/advisories/20163

third-party-advisoryx_refsource_SECUNIA

http://www.kb.cert.org/vuls/id/981134

third-party-advisoryx_refsource_CERT-VN

https://exchange.xforce.ibmcloud.com/vulnerabilities/16931

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Dec 23, 2004
Vulnerability Reserved
Jul 13, 2004