CVE-2001-1391

low-risk

Published 2001-04-17

Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory.

Do I need to act?

0.11% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Linux Kernel

Linux

Mailing List http://marc.info/?l=bugtraq&m=98575345009963&w=2

Mailing List http://marc.info/?l=bugtraq&m=98637996127004&w=2

Mailing List http://marc.info/?l=bugtraq&m=98653252326445&w=2

Mailing List http://marc.info/?l=bugtraq&m=98684172109474&w=2

Mailing List http://marc.info/?l=bugtraq&m=98759029811377&w=2

Mailing List http://marc.info/?l=bugtraq&m=98775114228203&w=2

Mailing List http://marc.info/?l=bugtraq&m=99013830726309&w=2

Broken Link http://www.linux.org.uk/VERSION/relnotes.2219.html

Broken Link http://www.redhat.com/support/errata/RHSA-2001-047.html

Third Party Advisory https://exchange.xforce.ibmcloud.com/vulnerabilities/11162

Broken Link https://www.debian.org/security/2001/dsa-047

Mailing List http://marc.info/?l=bugtraq&m=98575345009963&w=2

Mailing List http://marc.info/?l=bugtraq&m=98637996127004&w=2

Mailing List http://marc.info/?l=bugtraq&m=98653252326445&w=2

Mailing List http://marc.info/?l=bugtraq&m=98684172109474&w=2

Mailing List http://marc.info/?l=bugtraq&m=98759029811377&w=2

Mailing List http://marc.info/?l=bugtraq&m=98775114228203&w=2

Mailing List http://marc.info/?l=bugtraq&m=99013830726309&w=2

Broken Link http://www.linux.org.uk/VERSION/relnotes.2219.html

Broken Link http://www.redhat.com/support/errata/RHSA-2001-047.html

and 2 more references

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal