CVE-2003-0465 Information

Description

The kernel strncpy function in Linux 2.4 and 2.5 does not NUL pad the buffer on architectures other than x86 as opposed to the expected behavior of strncpy as implemented in libc which could lead to information leaks.

Reference

http://marc.info/?l=linux-kernel&m=105796021120436&w=2 http://marc.info/?l=linux-kernel&m=105796415223490&w=2 http://www.redhat.com/support/errata/RHSA-2004-188.html https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A10285