CVE-2004-0685

Publication date 23 December 2004

Last updated 17 July 2025

Ubuntu priority

Description

Certain USB drivers in the Linux 2.4 kernel use the copy_to_user function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cleared from previous usage.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
kernel-source-2.4.27	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.4.27-12
	6.06 LTS dapper	Fixed 2.4.27-12

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2004-0685

CVE-2004-0685

Description

Status

References

Other references

Access our resources on patching vulnerabilities