LSN-0072-1

Advisory lineage Upstream: 14 Downstream: 0
Published: 14 Oct 2020, 10:08
Last modified:23 May 2026, 01:30

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

14 Oct 2020, 10:08
Published
Vulnerability first disclosed
23 May 2026, 01:30
Last Modified
Vulnerability information updated

Description

Kernel Live Patch Security Notice It was discovered that the F2FS file system implementation in the Linux kernel did not properly perform bounds checking on xattrs in some situations. A local attacker could possibly use this to expose sensitive information (kernel memory). (CVE-2020-0067) It was discovered that the Serial CAN interface driver in the Linux kernel did not properly initialize data. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2020-11494) Mauricio Faria de Oliveira discovered that the aufs implementation in the Linux kernel improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service. (CVE-2020-11935) Piotr Krysiuk discovered that race conditions existed in the file system implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash). (CVE-2020-12114) Or Cohen discovered that the AF_PACKET implementation in the Linux kernel did not properly perform bounds checking in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-14386) Hador Manor discovered that the DCCP protocol implementation in the Linux kernel improperly handled socket reuse, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-16119) Giuseppe Scrivano discovered that the overlay file system in the Linux kernel did not properly perform permission checks in some situations. A local attacker could possibly use this to bypass intended restrictions and gain read access to restricted files. (CVE-2020-16120)

Affected Systems

  • ubuntulinux

    < 4.4.0-193.224 | < 4.15.0-121.123 | < 5.4.0-51.56 | all

  • ubuntulinux-aws

    < 4.4.0-1117.131 | < 4.15.0-1086.91 | < 5.4.0-1028.29 | all

  • ubuntulinux-azure

    < 5.4.0-1031.32 | all

  • ubuntulinux-gcp

    < 5.4.0-1028.29 | all

  • ubuntulinux-lts-xenial

    < 4.4.0-193.224~14.04.1 | all

  • ubuntulinux-oem

    < 4.15.0-1099.109 | all

References (8)