LSN-0066-1

Advisory lineage Upstream: 6 Downstream: 0

Upstream

CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 UBUNTU-CVE-2020-8647 UBUNTU-CVE-2020-8648 UBUNTU-CVE-2020-8649

Published: 01 May 2020, 07:44

Last modified:03 Jun 2026, 13:32

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

01 May 2020, 07:44

Published

Vulnerability first disclosed

03 Jun 2026, 13:32

Last Modified

Vulnerability information updated

Description

Kernel Live Patch Security Notice It was discovered that the virtual terminal implementation in the Linux kernel did not properly handle resize events. A local attacker could use this to expose sensitive information. (CVE-2020-8647) It was discovered that the virtual terminal implementation in the Linux kernel contained a race condition. A local attacker could possibly use this to cause a denial of service (system crash) or expose sensitive information. (CVE-2020-8648) It was discovered that the virtual terminal implementation in the Linux kernel did not properly handle resize events. A local attacker could use this to expose sensitive information. (CVE-2020-8649)

Affected Systems

ubuntu•linux
all | < 4.4.0-178.208 | < 4.15.0-99.100
ubuntu•linux-aws
all | < 4.4.0-1106.117 | < 4.15.0-1066.70
ubuntu•linux-azure
all | < 4.15.0-1082.92~16.04.1
ubuntu•linux-lts-xenial
all | < 4.4.0-178.208~14.04.1
ubuntu•linux-oem
all | < 4.15.0-1080.90

LSN-0066-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (4)