In 2001, 20 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 0 were rated Critical, 2 High severity . Compared to 2000's 6 CVEs, 2001 represented an increase of 233% year-on-year. April was the most active month, with 11 CVEs published.
Monthly CVE Breakdown — 2001
CVEs published per month with severity breakdown
April (11) was the most active month in 2001. Together the top months account for a significant share of 2001's 20 total CVEs. February (1) had the lowest volume.
Severity Distribution — 2001
Breakdown across 20 CVEs
25% Medium · 10% High · 0% Critical.
Monthly Counts — 2001
CVE counts by month and severity
April was the most active month with 11 CVEs — 55% of 2001's total. February (1) had the lowest volume.
| Month | Total | Critical | High | Medium | Low | Share of year |
|---|---|---|---|---|---|---|
| February | 1 | 0 | 0 | 0 | 1 |
5%
|
| April | 11 | 0 | 1 | 2 | 8 |
55%
|
| May | 2 | 0 | 0 | 1 | 1 |
10%
|
| October | 1 | 0 | 0 | 0 | 1 |
5%
|
| November | 1 | 0 | 0 | 0 | 1 |
5%
|
| December | 4 | 0 | 1 | 2 | 1 |
20%
|
| Total | 20 | 0 | 2 | 5 | 13 |
All CVEs — 2001
20 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2001-1572 | linux | High | 7.5 | 2001-12-31 | The MAC module in Netfilter in Linux kernel 2.4.1 through 2.4.11, when configured to filter based on MAC addresses, all… | |
| CVE-2001-1398 | linux | High | 7.5 | 2001-04-17 | Masquerading code for Linux kernel before 2.2.19 does not fully check packet lengths in certain cases, which may lead t… | |
| CVE-2001-1390 | linux | Medium | 6.2 | 2001-04-17 | Unknown vulnerability in binfmt_misc in the Linux kernel before 2.2.19, related to user pages. | |
| CVE-2001-1391 | linux | Medium | 5.5 | 2001-04-17 | Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory. | |
| CVE-2001-0851 | linux | Medium | 5.0 | 2001-12-06 | Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force g… | |
| CVE-2001-0859 | linux | Medium | 5.0 | 2001-12-06 | 2.4.3-12 kernel in Red Hat Linux 7.1 Korean installation program sets the setting default umask for init to 000, which … | |
| CVE-2001-0316 | linux | Medium | 4.6 | 2001-05-03 | Linux kernel 2.4 and 2.2 allows local users to read kernel memory and possibly gain privileges via a negative argument … | |
| CVE-2001-0317 | linux | Low | 3.7 | 2001-05-03 | Race condition in ptrace in Linux kernel 2.4 and 2.2 allows local users to gain privileges by using ptrace to track and… | |
| CVE-2001-1395 | linux | Low | 3.6 | 2001-04-17 | Unknown vulnerability in sockfilter for Linux kernel before 2.2.19 related to "boundary cases," with unknown impact. | |
| CVE-2001-1396 | linux | Low | 3.6 | 2001-04-17 | Unknown vulnerabilities in strnlen_user for Linux kernel before 2.2.19, with unknown impact. |
2001 Linux Kernel CVE Highlights
-
Volume without critical severity
Despite high CVE volume, 2001 produced only 0 Critical-rated vulnerabilities. 25% of 2001 CVEs are Medium severity. This means the surge in raw numbers does not represent a proportional surge in high-severity risk.
-
Monthly variation
CVE publication in 2001 was uneven across months. April was the most active with 11 CVEs. February (1) had the lowest volume. Monthly spikes typically correspond to coordinated batches of backfilled CVEs being processed at once.