CVE-2004-0887

Name of the Vulnerable Software and Affected Versions Debian GNU/Linux kernel-image-2.4 versions 2.4.27-3-386 through 2.4.27-3-sparc64-smp Debian GNU/Linux kernel-headers versions 2.4.27-3-386 through 2.4.27-3-sparc64-smp Debian GNU/Linux kernel-pcmcia-modules versions 2.4.27-3-386 through 2.4.27-3-k7-smp Debian GNU/Linux lm-sensors versions 2.4.27-3-386 through 2.4.27-3-k7-smp Debian GNU/Linux i2c versions 2.4.27-3-386 through 2.4.27-3-k7-smp Debian GNU/Linux pcmcia-modules versions 2.4.27-3-386 through 2.4.27-3-k7-smp SUSE Linux Enterprise Server 9 on the S/390 platform (affected versions not specified)

Description The issue is related to multiple vulnerabilities in various packages of the Debian GNU/Linux operating system, including kernel-image, kernel-headers, kernel-pcmcia-modules, lm-sensors, i2c, and pcmcia-modules. These vulnerabilities can lead to a disruption of protected information and can be exploited remotely. Additionally, SUSE Linux Enterprise Server 9 on the S/390 platform has a vulnerability that allows local users to gain root privileges due to improper handling of a certain privileged instruction.

Recommendations For Debian GNU/Linux kernel-image-2.4 versions 2.4.27-3-386 through 2.4.27-3-sparc64-smp: Update to a newer version of the kernel-image package. For Debian GNU/Linux kernel-headers versions 2.4.27-3-386 through 2.4.27-3-sparc64-smp: Update to a newer version of the kernel-headers package. For Debian GNU/Linux kernel-pcmcia-modules versions 2.4.27-3-386 through 2.4.27-3-k7-smp: Update to a newer version of the kernel-pcmcia-modules package. For Debian GNU/Linux lm-sensors versions 2.4.27-3-386 through 2.4.27-3-k7-smp: Update to a newer version of the lm-sensors package. For Debian GNU/Linux i2c versions 2.4.27-3-386 through 2.4.27-3-k7-smp: Update to a newer version of the i2c package. For Debian GNU/Linux pcmcia-modules versions 2.4.27-3-386 through 2.4.27-3-k7-smp: Update to a newer version of the pcmcia-modules package. For SUSE Linux Enterprise Server 9 on the S/390 platform: Apply the necessary patches or updates to fix the vulnerability in handling privileged instructions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.