Eric Sandeen

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.16.4 Description: The issue allows local users to cause a denial of service via a crafted xfs image, resulting in an xfs bmapi write NULL pointer dereference. This occurs due to a problem in the xfs bmap extents to btree function in fs/xfs/libxfs/xfs bmap.c. Recommendations: For Linux kernel versions prior to 4.16.4, update to version 4.16.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** nilfs-utils versions prior to 2.0.14 **Description** The issue allows local users to execute arbitrary commands via the device string in a -c command line option to `mkfs.nilfs2()`. This is due to multiple programs being installed with unnecessary setuid privileges. **Recommendations** For versions prior to 2.0.14, update to version 2.0.14 or later to resolve the issue. As a temporary workaround, consider removing setuid privileges from unnecessary programs to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** usbvision-kmp-default versions (affected versions not specified) usbvision-kmp-bigsmp versions (affected versions not specified) usbvision-kmp-xenpae versions (affected versions not specified) usbvision-kmp-xen versions (affected versions not specified) usbvision-kmp-debug versions (affected versions not specified) kernel-headers-2.6-itanium versions (affected versions not specified) kernel-image-2.6.8-4-itanium versions (affected versions not specified) kernel-headers-2.4.27-4-sparc64 versions (affected versions not specified) kernel-image-2.4.27-4-sparc64 versions (affected versions not specified) kernel-headers-2.6.8-4-686-smp versions (affected versions not specified) kernel-image-2.6.8-4-686-smp versions (affected versions not specified) hostap-modules-2.6.8-4-686 versions (affected versions not specified) kernel-pcmcia-modules-2.4.27-4-586tsc versions (affected versions not specified) kernel-image-2.4.27-4-586tsc versions (affected versions not specified) kernel-headers-2.4.27-4-686-smp versions (affected versions not specified) kernel-image-2.4.27-4-686-smp versions (affected versions not specified) i2c-2.4.27-4-586tsc versions (affected versions not specified) kernel-build-2.4.27-4 versions (affected versions not specified) kernel-pcmcia-modules-2.4.27-4-686 versions (affected versions not specified) lm-sensors-2.4.27-4-686 versions (affected versions not specified) pcmcia-modules-2.4.27-4-686 versions (affected versions not specified) kernel-image-2.4.27-4-sparc32 versions (affected versions not specified) kernel-image-2.6.8-4-s390x versions (affected versions not specified) kernel-headers-2.6.8-4-itanium-smp versions (affected versions not specified) kernel-image-2.6.8-bvme6000 versions (affected versions not specified) kernel-headers-2.6.8-4-mckinley-smp versions (affected versions not specified) kernel-image-2.6.8-4-powerpc versions (affected versions not specified) pcmcia-modules-2.4.27-4-k7 versions (affected versions not specified) kernel-headers-2.6.8-4-generic versions (affected versions not specified) kernel-image-2.6.8-4-smp versions (affected versions not specified) kernel-image-2.4.27-4-smp versions (affected versions not specified) kernel-image-2.4.27-4-s390x versions (affected versions not specified) kernel-build-2.6.8-4-power3-smp versions (affected versions not specified) hostap-modules-2.4.27-3-686 versions (affected versions not specified) kernel-headers-2.6.8-13-em64t-p4 versions (affected versions not specified) kernel-headers-2.6.8-4-686 versions (affected versions not specified) kernel-headers-2.6.8-4-386 versions (affected versions not specified) kernel-headers-2.6.8-4-k7-smp versions (affected versions not specified) kernel-patch-2.6.8-s390 versions (affected versions not specified) kernel-source-2.6.8 versions (affected versions not specified) hostap-modules-2.4.27-4-k7-smp versions (affected versions not specified) kernel-image-2.6.8-mvme147 versions (affected versions not specified) kernel-headers-2.4.27-4-386 versions (affected versions not specified) i2c-2.4.27-4-k6 versions (affected versions not specified) kernel-headers-2.6.8-4-32-smp versions (affected versions not specified) kernel-headers-2.6.8-13-amd64-k8 versions (affected versions not specified) kernel-headers-2.6.8-4-64 versions (affected versions not specified) kernel-image-2.4.27-4-itanium-smp versions (affected versions not specified) kernel-headers-2.6-mckinley-smp versions (affected versions not specified) kernel-headers-2.6.8-4-sparc64-smp versions (affected versions not specified) kernel-patch-debian-2.6.8 versions (affected versions not specified) kernel-image-2.6.8-13-amd64-k8 versions (affected versions not specified) lm-sensors-2.4.27-4-k7 versions (affected versions not specified) hostap-modules-2.4.27-3-k7 versions (affected versions not specified) kernel-headers-2.4.27-4-smp versions (affected versions not specified) kernel-image-2.6.8-4-sparc32 versions (affected versions not specified) pcmcia-modules-2.4.27-4-586tsc versions (affected versions not specified) kernel-image-2.6.8-4-generic versions (affected versions not specified) kernel-headers-2.6.8-4-itanium versions (affected versions not specified) kernel-headers-2.4.27-4-mckinley versions (affected versions not specified) kernel-image-2.4.27-4-k7 versions (affected versions not specified) kernel-image-2.4.27-4-sparc64-smp versions (affected versions not specified) kernel-pcmcia-modules-2.4.27-4-k6 versions (affected versions not specified) kernel-image-2.6.8-4-k7-smp versions (affected versions not specified) kernel-headers-2.6.8-4-smp versions (affected versions not specified) kernel-headers-2.4.27-4 versions (affected versions not specified) kernel-headers-2.4.27-4-sparc32 versions (affected versions not specified) kernel-headers-2.4.27-4-k6 versions (affected versions not specified) kernel-headers-2.6.8-4-32 versions (affected versions not specified) kernel-build-2.6.8-4-power3 versions (affected versions not specified) i2c-2.4.27-4-386 versions (affected versions not specified) kernel-headers-2.6.8-4-k7 versions (affected versions not specified) kernel-build-2.6.8-4-power4-smp versions (affected versions not specified) hostap-modules-2.4.27-4-k6 versions (affected versions not specified) kernel-image-2.6.8-amiga versions (affected versions not specified) kernel-image-2.4.27-4-sparc32-smp versions (affected versions not specified) kernel-image-2.6.8-4-686-smp versions (affected versions not specified) kernel-image-2.6.8-atari versions (affected versions not specified) kernel-pcmcia-modules-2.4.27-4-k7-smp versions (affected versions not specified) kernel-headers-2.4.27-4-itanium-smp versions (affected versions not specified) kernel-image-2.6.8-4-power3 versions (affected versions not specified) kernel-image-2.6.8-4-power4-smp versions (affected versions not specified) kernel-image-2.6.8-4-itanium versions (affected versions not specified) hostap-modules-2.4.27-4-586tsc versions (affected versions not specified) kernel-headers-2.6.8-4-mckinley versions (affected versions not specified) kernel-image-2.4.27-4-mckinley versions (affected versions not specified) kernel-image-2.4.27-4-k7-smp versions (affected versions not specified) pcmcia-modules-2.4.27-4-k6 versions (affected versions not specified) kernel-image-2.6.8-4-power3-smp versions (affected versions not specified) kernel-image-2.4.27-4-sparc64 versions (affected versions not specified) kernel-headers-2.4.27-4-mckinley-smp versions (affected versions not specified) kernel-image-2.6.8-mac versions (affected versions not specified) hostap-modules-2.4.27-3-686-smp versions (affected versions not specified) kernel-image-2.6.8-4-32-smp versions (affected versions not specified) kernel-image-2.6.8-hp versions (affected versions not specified) kernel-image-2.4.27-4-k6 versions (affected versions not specified) kernel-image-2.4.27-4-mckinley-smp versions (affected versions not specified) kernel-image-2.6.8-4-mckinley-smp versions (affected versions not specified) kernel-image-2.4.27-4-686 versions (affected versions not specified) kernel-image-2.6.8-4-386 versions (affected versions not specified) i2c-2.4.27-4-686-smp versions (affected versions not specified) kernel-image-2.6.8-4-s390 versions (affected versions not specified) kernel-headers-2.6.8-13-em64t-p4-smp versions (affected versions not specified) i2c-2.4.27-4-k7 versions (affected versions not specified) kernel-headers-2.4.27-4-generic versions (affected versions not specified) kernel-headers-2.4.27-4-686 versions (affected versions not specified) kernel-image-2.6.8-sun3 versions (affected versions not specified) kernel-image-2.6.8-4-k7 versions (affected versions not specified) kernel-image-2.4.27-4-386 versions (affected versions not specified) kernel-headers-2.6.8-4-sparc32 versions (affected versions not specified) hostap-modules-2.4.27-4-686-smp versions (affected versions not specified) hostap-modules-2.6.8-4-386 versions (affected versions not specified) hostap-modules-2.4.27-3-386 versions (affected versions not specified) **Description** The issue is related to multiple vulnerabilities in various packages of the Debian GNU/Linux and openSUSE operating systems. These vulnerabilities can be exploited remotely, leading to a disruption of protected information. The exploitation of these vulnerabilities may result in a denial of service or potentially allow attackers to gain privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.