LSN-0070-1
Advisory lineage Upstream: 2 Downstream: 0
Upstream
Published: 17 Aug 2020, 07:58
Last modified:03 Jun 2026, 13:32
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
17 Aug 2020, 07:58
Published
Vulnerability first disclosed
03 Jun 2026, 13:32
Last Modified
Vulnerability information updated
Description
Kernel Live Patch Security Notice Mauricio Faria de Oliveira discovered that the aufs implementation in the Linux kernel improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service. (CVE-2020-11935)
Affected Systems
- ubuntu•linux
all | < 4.4.0-186.216 | < 4.15.0-112.113 | < 5.4.0-42.46
- ubuntu•linux-aws
all | < 4.4.0-1111.123 | < 4.15.0-1079.83 | < 5.4.0-1020.20
- ubuntu•linux-azure
all | < 4.15.0-1092.102~16.04.1 | < 5.4.0-1022.22
- ubuntu•linux-gcp
all | < 5.4.0-1021.21
- ubuntu•linux-lts-xenial
all | < 4.4.0-186.216~14.04.1
- ubuntu•linux-oem
all | < 4.15.0-1093.103