CVE-2020-10942
Advisory lineage Upstream: 0 Downstream: 28
Modified
Published: 24 Mar 2020, 21:03
Last modified:04 Aug 2024, 11:21
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
5.4 MEDIUM
v2.0 (nvd)
EPSS Score
0.07% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected
Timeline
24 Mar 2020, 21:03
Published
Vulnerability first disclosed
04 Aug 2024, 11:21
Last Modified
Vulnerability information updated
Description
In the Linux kernel before 5.5.8, get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow attackers to trigger kernel stack corruption via crafted system calls.
CVSS Metrics
- v3.1•MEDIUM•Score: 5.3CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H
- v2.0•MEDIUM•Score: 5.4AV:L/AC:M/Au:N/C:N/I:P/A:C
EPSS Trends
Current EPSS score: 0.07%• Percentile: 22%
Techniques & Countermeasures
- CWE-787•Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
Affected Systems
- canonical•ubuntu_linux
14.04 | 16.04 | 18.04 | 19.10
- debian•debian_linux
8.0 | 9.0 | 10.0
- linux•linux_kernel
< 5.5.8
- opensuse•leap
15.1
References (15)
- https://git.kernel.org/linus/42d84c8490f9f0931786f1623191fcab397c3d64
- https://lkml.org/lkml/2020/2/15/125
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.5.8
- https://security.netapp.com/advisory/ntap-20200403-0003/
- http://www.openwall.com/lists/oss-security/2020/04/15/4
- http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00035.html
- https://www.debian.org/security/2020/dsa-4667
- https://usn.ubuntu.com/4344-1/
- https://usn.ubuntu.com/4345-1/
- https://usn.ubuntu.com/4342-1/
- https://usn.ubuntu.com/4364-1/
- https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html
- https://lists.debian.org/debian-lts-announce/2020/06/msg00012.html
- https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html
- https://www.debian.org/security/2020/dsa-4698