PT-2004-3031 · Linux · Linux Kernel
Markku-Juhani O. Saarinen
·
Published
2004-05-26
·
Updated
2016-10-18
·
CVE-2004-2135
CVSS v2.0
2.1
Low
| Vector | AV:L/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Linux kernel version 2.6.x
Description
The issue concerns a weakness in the
cryptoloop on Linux kernel, specifically with "IV computation" when used on certain file systems with a block size of 1024 or greater. This weakness allows watermarked files to be detected without decryption.Recommendations
For Linux kernel version 2.6.x, consider applying configuration changes to mitigate the risk, such as avoiding the use of
cryptoloop on file systems with a block size of 1024 or greater until a fix is available.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux Kernel