Scott A. Crosby

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions 2.4.18 through 2.4.20 kernel-smp-2.4.20 kernel-iseries-2.4.18 iptables-1.2.5 modutils-devel-2.4.22 modutils-2.4.22 mkcramfs kernel-source-2.4.18 kernel-source-2.4.20 kernel-doc-2.4.18 kernel-doc-2.4.20 kernel-2.4.18 kernel-2.4.20 kernel-BOOT-2.4.20 iptables-ipv6-1.2.5 kernel-pseries-2.4.18 kernel-bigmem-2.4.20 cross-ppc64 pcmcia-modules-2.4.18-bf2.4 **Description** The issue affects multiple packages in the Linux operating system, including the kernel and various utilities. Exploitation of these vulnerabilities can lead to disruption of confidentiality, integrity, and availability of protected information. The vulnerabilities can be exploited remotely or locally, depending on the specific package and version. The route cache implementation in Linux 2.4 and the Netfilter IP conntrack module are also affected, allowing remote attackers to cause a denial of service via packets with forged source addresses. **Recommendations** For Linux kernel versions 2.4.18 through 2.4.20, update to a newer version to mitigate the risk. For kernel-smp-2.4.20, kernel-iseries-2.4.18, iptables-1.2.5, modutils-devel-2.4.22, modutils-2.4.22, mkcramfs, kernel-source-2.4.18, kernel-source-2.4.20, kernel-doc-2.4.18, kernel-doc-2.4.20, kernel-2.4.18, kernel-2.4.20, kernel-BOOT-2.4.20, iptables-ipv6-1.2.5, kernel-pseries-2.4.18, kernel-bigmem-2.4.20, and cross-ppc64, restrict access to minimize the risk of exploitation until a patch is available. For pcmcia-modules-2.4.18-bf2.4, consider disabling the module until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability for some of the affected packages.