The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity that is encrypting data, which allows local users to modify encrypted data without knowing the key.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2002-06-11T04:00:00
Updated: 2024-08-08T02:56:37.320Z
Reserved: 2002-06-07T00:00:00
Link: CVE-2002-0570
Vulnrichment
No data.
NVD
Status : Modified
Published: 2002-07-03T04:00:00.000
Modified: 2024-11-20T23:39:23.410
Link: CVE-2002-0570
Redhat
No data.