High severity7.5NVD Advisory· Published Sep 6, 2005· Updated Apr 16, 2026

CVE-2005-2801

Description

xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied.

Affected products

Linux/Kernel
cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.debian.org/debian-kernel/2005/08/msg00238.htmlnvdMailing ListPatch
www.novell.com/linux/security/advisories/2005_18_kernel.htmlnvdBroken LinkPatchVendor Advisory
acl.bestbits.at/pipermail/acl-devel/2005-February/001848.htmlnvdBroken LinkExploit
www.debian.org/security/2005/dsa-921nvdThird Party Advisory
www.debian.org/security/2005/dsa-922nvdThird Party Advisory
www.securityfocus.com/archive/1/427980/100/0/threadednvdBroken LinkThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/14793nvdBroken LinkThird Party AdvisoryVDB Entry
secunia.com/advisories/17073nvdBroken Link
secunia.com/advisories/17826nvdBroken Link
secunia.com/advisories/18056nvdBroken Link
secunia.com/advisories/18059nvdBroken Link
secunia.com/advisories/19252nvdBroken Link
www.mandriva.com/security/advisoriesnvdBroken Link
www.redhat.com/support/errata/RHSA-2005-514.htmlnvdBroken Link
www.redhat.com/support/errata/RHSA-2006-0144.htmlnvdBroken Link
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10495nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000