CVE-2001-1394

Name of the Vulnerable Software and Affected Versions Debian GNU/Linux kernel-image-2.2.19 versions prior to 2.2.19 Red Hat Linux mount versions prior to 2.10r-5 Red Hat Linux losetup versions prior to 2.10r-5 Red Hat Linux nfs-utils versions prior to 0.3.1

Description The issue affects multiple packages in Debian GNU/Linux and Red Hat Linux, allowing for remote exploitation that may lead to a breach of confidentiality, integrity, and availability of protected information. A signedness error in the getsockopt and setsockopt functions for Linux kernel versions before 2.2.19 enables local users to cause a denial of service. The vulnerabilities can be exploited remotely.

Recommendations For Debian GNU/Linux kernel-image-2.2.19 versions prior to 2.2.19: Update to a version later than 2.2.19 to resolve the issue. For Red Hat Linux mount versions prior to 2.10r-5: Update to version 2.10r-5 or later to resolve the issue. For Red Hat Linux losetup versions prior to 2.10r-5: Update to version 2.10r-5 or later to resolve the issue. For Red Hat Linux nfs-utils versions prior to 0.3.1: Update to version 0.3.1 or later to resolve the issue.