CVE-2003-0248

Name of the Vulnerable Software and Affected Versions Debian GNU/Linux (affected versions not specified) Red Hat Linux kernel versions 2.4.20 Red Hat Linux kernel-smp version 2.4.20 Red Hat Linux kernel-doc version 2.4.20 Red Hat Linux kernel-BOOT version 2.4.20 Red Hat Linux kernel-source version 2.4.20 Red Hat Linux kernel-bigmem version 2.4.20 Red Hat Linux quota version 3.06 Debian GNU/Linux pcmcia-modules version 2.4.18-bf2.4 Debian GNU/Linux mkcramfs (affected versions not specified) Linux kernel version 2.4

Description The issue involves multiple vulnerabilities in various Linux kernel and package versions, which can lead to the disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. The mxcsr code in the Linux kernel 2.4 allows attackers to modify CPU state registers via a malformed address.

Recommendations For Debian GNU/Linux, update to a version that contains a fix for this issue. For Red Hat Linux kernel versions 2.4.20, kernel-smp version 2.4.20, kernel-doc version 2.4.20, kernel-BOOT version 2.4.20, kernel-source version 2.4.20, and kernel-bigmem version 2.4.20, update to a version that contains a fix for this issue. For Red Hat Linux quota version 3.06, update to a version that contains a fix for this issue. For Debian GNU/Linux pcmcia-modules version 2.4.18-bf2.4, update to a version that contains a fix for this issue. For Debian GNU/Linux mkcramfs, update to a version that contains a fix for this issue. For Linux kernel version 2.4, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.