Description
Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory.
References (11)
Core 11
Core References
Broken Link, Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2001-047.html
Mailing List, Patch vendor-advisory
x_refsource_caldera
http://marc.info/?l=bugtraq&m=98637996127004&w=2
Broken Link x_refsource_confirm
http://www.linux.org.uk/VERSION/relnotes.2219.html
Broken Link vendor-advisory
x_refsource_debian
https://www.debian.org/security/2001/dsa-047
Mailing List vendor-advisory
x_refsource_mandrake
http://marc.info/?l=bugtraq&m=98759029811377&w=2
Mailing List, Patch mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=98684172109474&w=2
Mailing List, Patch vendor-advisory
x_refsource_immunix
http://marc.info/?l=bugtraq&m=98575345009963&w=2
Mailing List, Patch vendor-advisory
x_refsource_conectiva
http://marc.info/?l=bugtraq&m=98775114228203&w=2
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=98653252326445&w=2
Mailing List vendor-advisory
x_refsource_suse
http://marc.info/?l=bugtraq&m=99013830726309&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/11162
Scores
CVSS v3
5.5
EPSS
0.0042
EPSS Percentile
33.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-193
Status
published
Products (1)
linux/linux_kernel
< 2.2.19
Published
Apr 17, 2001
Tracked Since
Feb 18, 2026