CVE-2001-0371

FreeBSD < 4.2 - Unprotected User Data Exposure via UFS and EXT2FS Race Condition

Title source: llm
STIX 2.1

Description

Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows a local user to access otherwise restricted information.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6268
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/5682
Patch, Vendor Advisory vendor-advisory x_refsource_freebsd
http://archives.neohapsis.com/archives/freebsd/2001-03/0403.html

Scores

EPSS 0.0005
EPSS Percentile 15.6%

Details

Status published
Products (1)
freebsd/freebsd < 4.2
Published Jun 18, 2001
Tracked Since Feb 18, 2026