CVE: CAN-2004-0181
Updated: Tue, 06 Jul 2004 13:49:47 +0900
Summary: The JFS file system code in Linux 2.4.x has an information leak in
         which in-memory data is written to the device for an ext3 file system,
         which allows local users to obtain sensitive information by reading 
	 the raw device. (text:CAN-2004-0181)
Priority: Low
Status: Closed
Source: FEDORA-2004-111
Link:  http://www.ultramonkey.org/news_archive.shtml#2004062601
Resolved In:
  Kernel: 2.4.26-pre5
  Patch: http://linux.bkbits.net:8080/linux-2.4/cset@1.1302.51.1??index.html
  Red Hat Linux 7.3:
         Vendor:      None (EOL)
         UltraMonkey: kernel-2.4.20-31.9.um.1
  Red Hat Linux 8.0:
         Vendor:      None (EOL)
         UltraMonkey: kernel-2.4.20-31.9.um.1
  Red Hat Linux 9:
         Vendor:      None (EOL)
         UltraMonkey: kernel-2.4.20-31.9.um.1
  Fedora Core 1:
         Vendor:      kernel-2.4.22-1.2188.nptl
         UltraMonkey: kernel-2.4.22-1.2194.nptl.um.1
  Red Hat Enterprise Linux 3:
         Vendor:      None (EOL)
         UltraMonkey: kernel-2.4.21-15.0.2.EL.um.1
  Debian Woody:
         Vendor:      kernel-source-2.4.25_2.4.25-2
         UltraMonkey: kernel-source-2.4.22-1-ipvs_2.4.22-7woody.um.4
  Debian Sid:
         Vendor:      kernel-source-2.4.26_2.4.26-1
         UltraMonkey: kernel-source-2.4.22-1-ipvs_2.4.22-7.um.4