PT-2012-5450 · Linux+3 · Linux Kernel+3

Dimitry Monakhov

Published

2012-12-04

Updated

2023-02-13

CVE-2012-4508

CVSS v2.0

1.9

Low

Vector

AV:L/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.4.16

Description A race condition exists in the fs/ext4/extents.c file of the Linux kernel, allowing local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as uninitialized.

Recommendations For Linux kernel versions prior to 3.4.16, update to version 3.4.16 or later to resolve the issue.

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

CESA-2013_0496

CVE-2012-4508

DSA-2668-1

RHSA-2012:1491

RHSA-2012:1540

RHSA-2012_1540

RHSA-2013:0496

RHSA-2013:1519

RHSA-2013:1783

RHSA-2013_0496

SUSE-SU-2015:0481-1

USN-1644-1

USN-1645-1

USN-1671-1

USN-1673-1

USN-1704-1

USN-1719-1

USN-1720-1

USN-1726-1

USN-1899-1

USN-1900-1

Affected Products

Centos

Linux Kernel

Red Hat

Suse

PT-2012-5450 · Linux+3 · Linux Kernel+3

CVE-2012-4508

Weakness Enumeration

Related Identifiers

Affected Products

References · 33