UBUNTU-CVE-2020-28588

Advisory lineage Upstream: 1 Downstream: 3
Upstream
CVE-2020-28588
Published: 04 Dec 2020, 00:00
Last modified:03 Jun 2026, 13:34

Vulnerability Summary

Overall Risk (default)
low
22/100
CVSS Score
5.5 MEDIUM
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

04 Dec 2020, 00:00
Published
Vulnerability first disclosed
03 Jun 2026, 13:34
Last Modified
Vulnerability information updated

Description

An information disclosure vulnerability exists in the /proc/pid/syscall functionality of Linux Kernel 5.1 Stable and 5.4.66. More specifically, this issue has been introduced in v5.1-rc4 (commit 631b7abacd02b88f4b0795c08b54ad4fc3e7c7c0) and is still present in v5.10-rc4, so it’s likely that all versions in between are affected. An attacker can read /proc/pid/syscall to trigger this vulnerability, which leads to the kernel leaking memory contents.

CVSS Metrics

  • v3.1MEDIUMScore: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  • v3.0MEDIUMScore: 4CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected Systems

  • ubuntulinux

    < 5.4.0-66.74

  • ubuntulinux-aws

    < 5.4.0-1038.40

  • ubuntulinux-aws-5.0

    all

  • ubuntulinux-aws-5.3

    all

  • ubuntulinux-aws-5.4

    < 5.4.0-1038.40~18.04.1

  • ubuntulinux-aws-fips

    < 5.4.0-1069.73+fips2 | all

  • ubuntulinux-azure

    all | < 5.4.0-1040.42

  • ubuntulinux-azure-5.3

    all

  • ubuntulinux-azure-5.4

    < 5.4.0-1040.42~18.04.1

  • ubuntulinux-azure-edge

    all

  • ubuntulinux-azure-fips

    < 5.4.0-1073.76+fips1 | all

  • ubuntulinux-bluefield

    all

  • ubuntulinux-gcp

    all | < 5.4.0-1037.40

  • ubuntulinux-gcp-5.3

    all

  • ubuntulinux-gcp-5.4

    < 5.4.0-1037.40~18.04.1

  • ubuntulinux-gcp-edge

    all

  • ubuntulinux-gcp-fips

    < 5.4.0-1067.71~20.04.1 | all

  • ubuntulinux-gke

    < 5.4.0-1036.38

  • ubuntulinux-gke-5.4

    < 5.4.0-1036.38~18.04.1

  • ubuntulinux-gkeop

    < 5.4.0-1010.11

  • ubuntulinux-gkeop-5.4

    < 5.4.0-1010.11~18.04.1

  • ubuntulinux-hwe

    all

  • ubuntulinux-hwe-5.4

    < 5.4.0-66.74~18.04.2

  • ubuntulinux-hwe-5.8

    < 5.8.0-44.50~20.04.1

  • ubuntulinux-hwe-edge

    all | all

  • ubuntulinux-intel-iot-realtime

    all

  • ubuntulinux-kvm

    < 5.4.0-1033.34

  • ubuntulinux-nvidia

    all

  • ubuntulinux-oem

    all

  • ubuntulinux-oem-5.6

    < 5.6.0-1048.52

  • ubuntulinux-oracle

    < 5.4.0-1038.41

  • ubuntulinux-oracle-5.0

    all

  • ubuntulinux-oracle-5.3

    all

  • ubuntulinux-oracle-5.4

    < 5.4.0-1038.41~18.04.1

  • ubuntulinux-raspi

    < 5.4.0-1029.32

  • ubuntulinux-raspi-5.4

    < 5.4.0-1029.32~18.04.1

  • ubuntulinux-raspi-realtime

    all

  • ubuntulinux-raspi2

    all

  • ubuntulinux-realtime

    all

  • ubuntulinux-riscv

    all

  • ubuntulinux-riscv-5.8

    < 5.8.0-17.19~20.04.1

References (7)