CVE-2012-4508
CVE-2012-4508
Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as uninitialized.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=dee1f973ca341c266229faa5a1a5bb268bed3531http://lists.fedoraproject.org/pipermail/package-announce/2012-November/091110.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1540.htmlhttp://rhn.redhat.com/errata/RHSA-2013-0496.htmlhttp://rhn.redhat.com/errata/RHSA-2013-1519.htmlhttp://rhn.redhat.com/errata/RHSA-2013-1783.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=869904https://github.com/torvalds/linux/commit/dee1f973ca341c266229faa5a1a5bb268bed3531https://www.suse.com/support/update/announcement/2012/suse-su-20121679-1.htmlhttp://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.16http://www.openwall.com/lists/oss-security/2012/10/25/1http://www.ubuntu.com/usn/USN-1645-1