CWE
362
Advisory Published
Updated

REDHAT-BUG-869904: Race Condition

First published: Thu Oct 25 2012(Updated: )

A race condition flaw has been found in the way asynchronous I/O and fallocate interacted which can lead to exposure of stale data -- that is, an extent which should have had the "uninitialized" bit set indicating that its blocks have not yet been written and thus contain data from a deleted file. An unprivileged local user could use this flaw to cause an information leak. Acknowledgements: Red Hat would like to thank Theodore Ts'o for reporting this issue. Upstream acknowledges Dmitry Monakhov as the original reporter. References: <a href="http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=dee1f973ca341c266229faa5a1a5bb268bed3531">http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=dee1f973ca341c266229faa5a1a5bb268bed3531</a>

Affected SoftwareAffected VersionHow to fix
Red Hat Linux

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the severity of REDHAT-BUG-869904?

    The severity of REDHAT-BUG-869904 is considered high due to the potential exposure of stale data from deleted files.

  • How do I fix REDHAT-BUG-869904?

    To fix REDHAT-BUG-869904, you should apply the latest patches or updates provided by Red Hat for your Linux Kernel.

  • What does REDHAT-BUG-869904 affect?

    REDHAT-BUG-869904 affects the Red Hat Linux Kernel and can lead to data integrity issues.

  • Is REDHAT-BUG-869904 a common vulnerability?

    REDHAT-BUG-869904 is not a common vulnerability but it poses significant risks in specific scenarios involving asynchronous I/O operations.

  • Who is impacted by REDHAT-BUG-869904?

    Any users or systems running the affected versions of the Red Hat Linux Kernel are impacted by REDHAT-BUG-869904.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203