PT-2001-2685 · Red Hat+2 · Losetup+5
Published
1970-01-01
·
Updated
2016-12-08
·
CVE-2001-1395
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Debian GNU/Linux kernel-image-2.2.19-amiga version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-atari version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-bvme6000 version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-chrp version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-compact version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-generic version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-ide version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-idepci version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-jensen version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-mac version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-mvme147 version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-mvme16x version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-nautilus version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-pmac version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-prep version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-smp version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-sun4cdm version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-sun4dm-pci version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-sun4dm-smp version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-sun4u version 2.2.19
Debian GNU/Linux kernel-image-2.2.19-sun4u-smp version 2.2.19
Red Hat Linux mount-2.10r-0.6.x version 2.10r-0.6.x
Red Hat Linux mount-2.10r-5 version 2.10r-5
Red Hat Linux losetup-2.10r-0.6.x version 2.10r-0.6.x
Red Hat Linux losetup-2.10r-5 version 2.10r-5
Red Hat Linux nfs-utils-0.3.1 version 0.3.1
Linux kernel versions prior to 2.2.19
Description
The issue is related to multiple vulnerabilities in various packages of Debian GNU/Linux and Red Hat Linux operating systems. These vulnerabilities can be exploited remotely and may lead to a breach of confidentiality, integrity, and availability of protected information. The vulnerabilities are present in different kernel images and utilities, including kernel-image, mount, losetup, and nfs-utils. The exploitation of these vulnerabilities can be done remotely.
Recommendations
As a temporary workaround, consider disabling the vulnerable kernel images until a patch is available.
Restrict access to the vulnerable mount, losetup, and nfs-utils utilities to minimize the risk of exploitation.
Update the Linux kernel to version 2.2.19 or later to fix the vulnerability.
For each affected package, update to a version that is not vulnerable or apply the recommended patch.
At the moment, there is no information about a newer version that contains a fix for this vulnerability for some of the affected packages.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Linux Kernel
Red Hat
Losetup
Mount
Nfs-Utils