Security Advisory

CVE-2023-5368

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-04 03:38:09

Last updated 2024-08-02 07:59:43

Assigner freebsd

State PUBLISHED

Description

On an msdosfs filesystem, the truncate or ftruncate system calls under certain circumstances populate the additional space in the file with unallocated data from the underlying disk device, rather than zero bytes. This may permit a user with write access to files on a msdosfs filesystem to read unintended data (e.g. from a previously deleted file).

← Browse all CVEs View on cve.org ↗