Unrated severityNVD Advisory· Published Dec 31, 2003· Updated Jun 16, 2026

CVE-2003-0956

Description

Multiple race conditions in the handling of O_DIRECT in Linux kernel prior to version 2.4.22 could cause stale data to be returned from the disk when handling sparse files, or cause incorrect data to be returned when a file is truncated as it is being read, which might allow local users to obtain sensitive data that was originally owned by other users, a different vulnerability than CVE-2003-0018.

Affected products

Linux/Kernel
cpe:2.3:o:linux:linux_kernel:2.4.22:*:*:*:*:*:*:*
Linux/Linux kernelllm-fuzzy
Range: <2.4.22

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

linux.bkbits.net:8080/linux-2.4/cset%403ef33d95ym_22QH2xwhDMt264M55Fgnvd
exchange.xforce.ibmcloud.com/vulnerabilities/42942nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000