vulnerability
Oracle Linux: CVE-2020-8647: ELSA-2020-4060: kernel security, bug fix, and enhancement update (IMPORTANT) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:L/Au:N/C:P/I:N/A:P) | Jan 30, 2020 | May 7, 2020 | Dec 3, 2025 |
Severity
4
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:P)
Published
Jan 30, 2020
Added
May 7, 2020
Modified
Dec 3, 2025
Description
There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vc_do_resize function in drivers/tty/vt/vt.c.
A flaw was found in the Linux kernel’s virtual console resize functionality. An attacker with local access to virtual consoles can use the virtual console resizing code to gather kernel internal data structures.
A flaw was found in the Linux kernel’s virtual console resize functionality. An attacker with local access to virtual consoles can use the virtual console resizing code to gather kernel internal data structures.
Solutions
oracle-linux-upgrade-kerneloracle-linux-upgrade-kernel-uek
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.