CVE-2004-0554

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.4.x through 2.6.x Debian GNU/Linux kernel-image-2.4.18-powerpc-xfs version 2.4.18 Debian GNU/Linux kernel-image-2.4.18-sun4u version 2.4.18 Debian GNU/Linux kernel-image-2.4.18-sun4u-smp version 2.4.18 Debian GNU/Linux kernel-image-2.4.19-sparc version 2.4.19 Debian GNU/Linux kernel-image-2.4.19-sun4u version 2.4.19 Debian GNU/Linux kernel-image-2.4.19-sun4u-smp version 2.4.19 Gentoo Linux aa-sources versions prior to 2.4.23-r2 openSUSE k i386 (affected versions not specified)

Description The issue affects the Linux kernel and various Linux distributions, including Debian GNU/Linux, Gentoo Linux, and openSUSE. It involves multiple vulnerabilities that can be exploited to compromise the confidentiality, integrity, and availability of protected information. Exploitation can be done remotely or locally, depending on the specific vulnerability and system configuration. The vulnerabilities may cause a denial of service, such as a system crash, and can be triggered by an infinite loop that activates a signal handler with a specific sequence of instructions.

Recommendations For Linux kernel versions 2.4.x through 2.6.x, update to a newer version that includes the necessary security patches. For Debian GNU/Linux kernel-image-2.4.18-powerpc-xfs version 2.4.18, update to a newer version that includes the necessary security patches. For Debian GNU/Linux kernel-image-2.4.18-sun4u version 2.4.18, update to a newer version that includes the necessary security patches. For Debian GNU/Linux kernel-image-2.4.18-sun4u-smp version 2.4.18, update to a newer version that includes the necessary security patches. For Debian GNU/Linux kernel-image-2.4.19-sparc version 2.4.19, update to a newer version that includes the necessary security patches. For Debian GNU/Linux kernel-image-2.4.19-sun4u version 2.4.19, update to a newer version that includes the necessary security patches. For Debian GNU/Linux kernel-image-2.4.19-sun4u-smp version 2.4.19, update to a newer version that includes the necessary security patches. For Gentoo Linux aa-sources versions prior to 2.4.23-r2, update to version 2.4.23-r2 or later. For openSUSE k i386, at the moment, there is no information about a newer version that contains a fix for this vulnerability.