Vulnerability Note VU#981134

Linux kernel USB drivers do not initialize kernel memory properly

Original Release date: 22 Oct 2004 | Last revised: 25 Oct 2004

Overview

Various Linux USB drivers contain an information disclosure vulnerability that may expose sensitive segments of kernel memory to users.

Description

USB drivers for several versions the Linux kernel do not properly initialize kernel memory before using it. When an affected USB driver copies uninitialized memory from kernel space to user space (with the copy_to_user function), the previous kernel memory contents will be copied as well. In some cases, this will grant a user inappropriate access to sensitive segments of kernel memory.

Impact

Users may be able to view sensitive segments of kernel memory.

Solution

Check with Vendor

Users who suspect they are vulnerable are encouraged to check with their vendor to determine the appropriate action to take.

Upgrade to Unaffected Build of the Linux Kernel

Users are encouraged to upgrade to an unaffected build of the Linux kernel.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
Gentoo LinuxAffected-30 Aug 2004
SuSE Inc.Affected22 Oct 200425 Oct 2004
Ingrian NetworksNot Affected22 Oct 200422 Oct 2004
ConnectivaUnknown-22 Oct 2004
DebianUnknown22 Oct 200422 Oct 2004
EngardeUnknown-22 Oct 2004
Hewlett-Packard CompanyUnknown22 Oct 200422 Oct 2004
IBM-zSeriesUnknown22 Oct 200422 Oct 2004
IBM eServerUnknown22 Oct 200422 Oct 2004
ImmunixUnknown-22 Oct 2004
MandrakeSoftUnknown-22 Oct 2004
MontaVista SoftwareUnknown22 Oct 200422 Oct 2004
NovellUnknown-22 Oct 2004
Openwall GNU/*/LinuxUnknown22 Oct 200425 Oct 2004
Red Hat Inc.Unknown22 Oct 200422 Oct 2004
If you are a vendor and your product is affected, let us know.View More »

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

This vulnerability was reported by Tim Yamin.

This document was written by Jeff Gennari.

Other Information

  • CVE IDs: CAN-2004-0685
  • Date Public: 25 Aug 2004
  • Date First Published: 22 Oct 2004
  • Date Last Updated: 25 Oct 2004
  • Severity Metric: 0.48
  • Document Revision: 151

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.