PT-2002-2966 · Netfilter+1 · Netfilter / Iptables+1

Published

2002-12-31

Updated

2017-07-29

CVE-2002-2254

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.4 up to 2.4.19 Linux kernel versions 2.5 up to 2.5.31

Description: The experimental IP packet queuing feature in Netfilter / IPTables may allow a later process with the same Process ID (PID) to access certain network traffic that would otherwise be restricted, when a privileged process exits and network traffic is not being queued.

Recommendations: For Linux kernel versions 2.4 up to 2.4.19, update to a version later than 2.4.19 to resolve the issue. For Linux kernel versions 2.5 up to 2.5.31, update to a version later than 2.5.31 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2002-2254

Affected Products

Linux Kernel

Netfilter / Iptables

PT-2002-2966 · Netfilter+1 · Netfilter / Iptables+1

CVE-2002-2254

Weakness Enumeration

Related Identifiers

Affected Products

References · 4