Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:981134
HistoryOct 22, 2004 - 12:00 a.m.

Linux kernel USB drivers do not initialize kernel memory properly

2004-10-2200:00:00
www.kb.cert.org
21

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Overview

Various Linux USB drivers contain an information disclosure vulnerability that may expose sensitive segments of kernel memory to users.

Description

USB drivers for several versions the Linux kernel do not properly initialize kernel memory before using it. When an affected USB driver copies uninitialized memory from kernel space to user space (with the copy_to_user function), the previous kernel memory contents will be copied as well. In some cases, this will grant a user inappropriate access to sensitive segments of kernel memory.

Impact

Users may be able to view sensitive segments of kernel memory.

Solution

Check with Vendor

Users who suspect they are vulnerable are encouraged to check with their vendor to determine the appropriate action to take.

Upgrade to Unaffected Build of the Linux Kernel

Users are encouraged to upgrade to an unaffected build of the Linux kernel.

Vendor Information

981134

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Gentoo Linux Affected

Updated: August 30, 2004

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

SuSE Inc. __ Affected

Notified: October 22, 2004 Updated: October 25, 2004

Status

Affected

Vendor Statement

According to SusE “We will release updates for those bugs together with one of our next kernel security updates”.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Ingrian Networks __ Not Affected

Notified: October 22, 2004 Updated: October 22, 2004

Status

Not Affected

Vendor Statement

Ingrian Networks products are not vulnerable to this issue as they do not contain USB drivers.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Connectiva Unknown

Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Debian Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Engarde Unknown

Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Hewlett-Packard Company Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

IBM eServer Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

IBM-zSeries Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Immunix Unknown

Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

MandrakeSoft Unknown

Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

MontaVista Software Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Novell Unknown

Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Openwall GNU/*/Linux __ Unknown

Notified: October 22, 2004 Updated: October 25, 2004

Status

Unknown

Vendor Statement

The default Linux kernel image on Openwall GNU/*/Linux (Owl) 1.1 CDs is not affected by this issue since USB support is not compiled in. Custom kernel builds, however, could be affected, depending on options used. This has been corrected in Owl-current and Owl 1.1-stable on August 15, 2004 with the update to Linux 2.4.27-ow1. More importantly, his update also corrects a number of other Linux kernels vulnerabilities which have similar prerequisites and impact (e.g., CVE CAN-2004-0415).

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Red Hat Inc. Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

SCO Unknown

Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Sequent Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

Sun Microsystems Inc. Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

TurboLinux Unknown

Notified: October 22, 2004 Updated: October 22, 2004

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23981134 Feedback>).

View all 19 vendors __View less vendors __

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

This vulnerability was reported by Tim Yamin.

This document was written by Jeff Gennari.

Other Information

CVE IDs: CVE-2004-0685
Severity Metric: 0.48 Date Public:

Related

openvas 9
securityvulns 2
gentoo 1
nessus 12
nvd 2
cvelist 2
ubuntucve 2
cve 2
packetstorm 1
exploitpack 1
seebug 1
exploitdb 1
suse 1
redhat 6
debian 5
osv 4
openvas
openvas
Gentoo Security Advisory GLSA 200408-24 (Kernel)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200408-24 (Kernel)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1069-1)
2023-03-08 00:00:00
securityvulns
securityvulns
[ GLSA 200408-24 ] Linux Kernel: Multiple information leaks
2004-08-30 00:00:00
Linux kernel file offset pointer races
2004-08-05 00:00:00
gentoo
gentoo
Linux Kernel: Multiple information leaks
2004-08-25 00:00:00
nessus
nessus
GLSA-200408-24 : Linux Kernel: Multiple information leaks
2004-08-30 00:00:00
SUSE-SA:2004:024: kernel
2004-08-09 00:00:00
Mandrake Linux Security Advisory : kernel (MDKSA-2004:087)
2004-08-27 00:00:00
nvd
nvd
CVE-2004-0685
2004-12-23 05:00:00
CVE-2004-0415
2004-11-23 05:00:00
cvelist
cvelist
CVE-2004-0685
2004-10-26 04:00:00
CVE-2004-0415
2004-08-05 04:00:00
ubuntucve
ubuntucve
CVE-2004-0685
2004-12-23 00:00:00
CVE-2004-0415
2004-11-23 00:00:00
cve
cve
CVE-2004-0685
2004-12-23 05:00:00
CVE-2004-0415
2004-11-23 05:00:00
packetstorm
packetstorm
isec-0016-procleaks.txt
2004-08-05 00:00:00
exploitpack
exploitpack
Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure
2004-08-04 00:00:00
seebug
seebug
Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit
2008-07-16 00:00:00
exploitdb
exploitdb
Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure
2004-08-04 00:00:00
suse
suse
local privilege escalation in kernel
2004-08-09 08:40:13
redhat
redhat
(RHSA-2004:418) kernel security update
2004-08-03 00:00:00
(RHSA-2004:413) kernel security update
2004-08-03 00:00:00
(RHSA-2004:327) kernel security update
2004-08-18 00:00:00
debian
debian
[SECURITY] [DSA 1070-1] New Linux kernel 2.4.19 packages fix several vulnerabilities
2006-05-21 06:24:21
[SECURITY] [DSA 1067-1] New Linux kernel 2.4.16 packages fix several vulnerabilities
2006-05-20 08:20:15
[SECURITY] [DSA 1069-1] New Linux kernel 2.4.18 packages fix several vulnerabilities
2006-05-21 02:53:34
osv
osv
kernel-source-2.4.19 - several vulnerabilities
2006-05-21 00:00:00
kernel-source-2.4.18 - several
2006-05-20 00:00:00
kernel-source-2.4.17 - several vulnerabilities
2006-05-29 00:00:00

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON
Related for VU:981134
openvas9securityvulns2gentoo1nessus12nvd2cvelist2ubuntucve2cve2packetstorm1exploitpack1seebug1exploitdb1suse1redhat6debian5osv4