Yen Zheng

**Name of the Vulnerable Software and Affected Versions** Debian GNU/Linux kernel versions prior to 2.6.14 Debian GNU/Linux kernel-image versions prior to 2.6.14 Debian GNU/Linux kernel-headers versions prior to 2.6.14 Debian GNU/Linux kernel-pcmcia-modules versions prior to 2.6.14 Debian GNU/Linux kernel-build versions prior to 2.6.14 Debian GNU/Linux lm-sensors versions prior to 2.6.14 Debian GNU/Linux i2c versions prior to 2.6.14 Debian GNU/Linux hostap-modules versions prior to 2.6.14 Debian GNU/Linux pcmcia-modules versions prior to 2.6.14 SUSE Linux Enterprise kernel versions prior to 2.6.14 **Description** The issue affects the Linux kernel and related packages in Debian GNU/Linux and SUSE Linux Enterprise. It allows remote exploitation, potentially leading to a violation of confidentiality, integrity, and availability of protected information. The vulnerability can be exploited by triggering a free of non-allocated memory, causing a denial of service or corrupting kernel memory. **Recommendations** For Debian GNU/Linux kernel versions prior to 2.6.14, update to version 2.6.14 or later. For Debian GNU/Linux kernel-image versions prior to 2.6.14, update to version 2.6.14 or later. For Debian GNU/Linux kernel-headers versions prior to 2.6.14, update to version 2.6.14 or later. For Debian GNU/Linux kernel-pcmcia-modules versions prior to 2.6.14, update to version 2.6.14 or later. For Debian GNU/Linux kernel-build versions prior to 2.6.14, update to version 2.6.14 or later. For Debian GNU/Linux lm-sensors versions prior to 2.6.14, update to version 2.6.14 or later. For Debian GNU/Linux i2c versions prior to 2.6.14, update to version 2.6.14 or later. For Debian GNU/Linux hostap-modules versions prior to 2.6.14, update to version 2.6.14 or later. For Debian GNU/Linux pcmcia-modules versions prior to 2.6.14, update to version 2.6.14 or later. For SUSE Linux Enterprise kernel versions prior to 2.6.14, update to version 2.6.14 or later.