PT-2004-3031 · Linux · Linux Kernel
Markku-Juhani O. Saarinen
·
Publicado
2004-05-26
·
Atualizado
2016-10-18
·
CVE-2004-2135
CVSS v2.0
2.1
Baixa
| Vetor | AV:L/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Linux kernel version 2.6.x
Description
The issue concerns a weakness in the
cryptoloop on Linux kernel, specifically with "IV computation" when used on certain file systems with a block size of 1024 or greater. This weakness allows watermarked files to be detected without decryption.Recommendations
For Linux kernel version 2.6.x, consider applying configuration changes to mitigate the risk, such as avoiding the use of
cryptoloop on file systems with a block size of 1024 or greater until a fix is available.Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Linux Kernel