UBUNTU-CVE-2020-27152
Advisory lineage Upstream: 1 Downstream: 1
Upstream
Downstream
Published: 06 Nov 2020, 08:15
Last modified:21 May 2026, 18:04
Vulnerability Summary
Overall Risk (default)
low
22/100 CVSS Score
5.5 MEDIUM
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
06 Nov 2020, 08:15
Published
Vulnerability first disclosed
21 May 2026, 18:04
Last Modified
Vulnerability information updated
Description
An issue was discovered in ioapic_lazy_update_eoi in arch/x86/kvm/ioapic.c in the Linux kernel before 5.9.2. It has an infinite loop related to improper interaction between a resampler and edge triggering, aka CID-77377064c3a9.
CVSS Metrics
- v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Systems
- ubuntu•linux
all
- ubuntu•linux-aws
all
- ubuntu•linux-aws-5.0
all
- ubuntu•linux-aws-5.3
all
- ubuntu•linux-azure
all | all
- ubuntu•linux-azure-5.3
all
- ubuntu•linux-azure-edge
all
- ubuntu•linux-gcp
all
- ubuntu•linux-gcp-5.3
all
- ubuntu•linux-gcp-edge
all
- ubuntu•linux-hwe
all
- ubuntu•linux-hwe-5.8
< 5.8.0-31.33~20.04.1
- ubuntu•linux-hwe-edge
all | all
- ubuntu•linux-lts-xenial
all
- ubuntu•linux-oem-5.6
< 5.6.0-1048.52
- ubuntu•linux-oracle-5.0
all
- ubuntu•linux-oracle-5.3
all
- ubuntu•linux-raspi2
all
References (7)
- https://ubuntu.com/security/CVE-2020-27152
- https://bugzilla.redhat.com/show_bug.cgi?id=1888886
- https://bugzilla.kernel.org/show_bug.cgi?id=208767
- https://www.openwall.com/lists/oss-security/2020/11/03/1
- https://ubuntu.com/security/notices/USN-4659-1
- https://ubuntu.com/security/notices/USN-4752-1
- https://www.cve.org/CVERecord?id=CVE-2020-27152