CVE-2002-2254

Linux Kernel - Access Control

Title source: rule

Description

The experimental IP packet queuing feature in Netfilter / IPTables in Linux kernel 2.4 up to 2.4.19 and 2.5 up to 2.5.31, when a privileged process exits and network traffic is not being queued, may allow a later process with the same Process ID (PID) to access certain network traffic that would otherwise be restricted.

References (3)

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2002-12/0025.html

[Patch] http://www.securityfocus.com/bid/6305

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/10756

Scores

EPSS 0.0009

EPSS Percentile 25.4%

Classification

CWE

CWE-264

Status draft

Affected Products (50)

linux/linux_kernel

... and 35 more

Timeline

Published Dec 31, 2002

Tracked Since Feb 18, 2026