CVE-2006-4813
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
7.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.1%
The __block_prepare_write function in fs/buffer.c for Linux kernel 2.6.x before 2.6.13 does not properly clear buffers during certain error conditions, which allows local users to read portions of files that have been unlinked.
Affected configurations
References
osvdb.org/31376
rhn.redhat.com/errata/RHSA-2007-0014.html
secunia.com/advisories/23370
secunia.com/advisories/23384
secunia.com/advisories/23474
secunia.com/advisories/23752
secunia.com/advisories/23997
secunia.com/advisories/24206
support.avaya.com/elmodocs2/security/ASA-2007-063.htm
www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=152becd26e0563aefdbc4fd1fe491928efe92d1f
www.mandriva.com/security/advisories?name=MDKSA-2007:012
www.mandriva.com/security/advisories?name=MDKSA-2007:025
www.novell.com/linux/security/advisories/2006_79_kernel.html
www.securityfocus.com/bid/21522
www.ubuntu.com/usn/usn-395-1
www.us.debian.org/security/2006/dsa-1233
bugzilla.redhat.com/bugzilla/show_bug.cgi?id=207463
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11701
Related
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
7.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.1%