vulnerability

Ubuntu: (Multiple Advisories) (CVE-2020-13143): Linux kernel vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	May 18, 2020	Aug 5, 2020	Mar 22, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

May 18, 2020

Added

Aug 5, 2020

Modified

Mar 22, 2023

Description

gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup without considering the possibility of an internal '\0' value, which allows attackers to trigger an out-of-bounds read, aka CID-15753588bcd4.

Solution(s)

ubuntu-upgrade-linux-image-4-15-0-1046-oracleubuntu-upgrade-linux-image-4-15-0-1048-oracleubuntu-upgrade-linux-image-4-15-0-1064-gkeubuntu-upgrade-linux-image-4-15-0-1065-raspi2ubuntu-upgrade-linux-image-4-15-0-1069-kvmubuntu-upgrade-linux-image-4-15-0-107-genericubuntu-upgrade-linux-image-4-15-0-107-generic-lpaeubuntu-upgrade-linux-image-4-15-0-107-lowlatencyubuntu-upgrade-linux-image-4-15-0-1074-awsubuntu-upgrade-linux-image-4-15-0-1077-awsubuntu-upgrade-linux-image-4-15-0-1078-gcpubuntu-upgrade-linux-image-4-15-0-1081-snapdragonubuntu-upgrade-linux-image-4-15-0-109-genericubuntu-upgrade-linux-image-4-15-0-109-generic-lpaeubuntu-upgrade-linux-image-4-15-0-109-lowlatencyubuntu-upgrade-linux-image-4-15-0-1091-azureubuntu-upgrade-linux-image-4-15-0-1091-oemubuntu-upgrade-linux-image-4-4-0-1074-awsubuntu-upgrade-linux-image-4-4-0-1076-kvmubuntu-upgrade-linux-image-4-4-0-1110-awsubuntu-upgrade-linux-image-4-4-0-1135-raspi2ubuntu-upgrade-linux-image-4-4-0-1139-snapdragonubuntu-upgrade-linux-image-4-4-0-185-genericubuntu-upgrade-linux-image-4-4-0-185-generic-lpaeubuntu-upgrade-linux-image-4-4-0-185-lowlatencyubuntu-upgrade-linux-image-4-4-0-185-powerpc-e500mcubuntu-upgrade-linux-image-4-4-0-185-powerpc-smpubuntu-upgrade-linux-image-4-4-0-185-powerpc64-embubuntu-upgrade-linux-image-4-4-0-185-powerpc64-smpubuntu-upgrade-linux-image-5-0-0-1043-gkeubuntu-upgrade-linux-image-5-0-0-1063-oem-osp1ubuntu-upgrade-linux-image-5-3-0-1024-kvmubuntu-upgrade-linux-image-5-3-0-1028-oracleubuntu-upgrade-linux-image-5-3-0-1028-raspi2ubuntu-upgrade-linux-image-5-3-0-1030-awsubuntu-upgrade-linux-image-5-3-0-1030-gcpubuntu-upgrade-linux-image-5-3-0-1030-gkeubuntu-upgrade-linux-image-5-3-0-1032-azureubuntu-upgrade-linux-image-5-3-0-62-genericubuntu-upgrade-linux-image-5-3-0-62-generic-lpaeubuntu-upgrade-linux-image-5-3-0-62-lowlatencyubuntu-upgrade-linux-image-5-3-0-62-snapdragonubuntu-upgrade-linux-image-5-4-0-1013-raspiubuntu-upgrade-linux-image-5-4-0-1018-awsubuntu-upgrade-linux-image-5-4-0-1019-gcpubuntu-upgrade-linux-image-5-4-0-1019-oracleubuntu-upgrade-linux-image-5-4-0-1020-azureubuntu-upgrade-linux-image-5-4-0-28-genericubuntu-upgrade-linux-image-5-4-0-40-genericubuntu-upgrade-linux-image-5-4-0-40-generic-lpaeubuntu-upgrade-linux-image-5-4-0-40-lowlatencyubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-hweubuntu-upgrade-linux-image-aws-lts-18-04ubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-azure-lts-18-04ubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-gcp-lts-18-04ubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-hwe-18-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-16-04ubuntu-upgrade-linux-image-generic-lpae-hwe-18-04ubuntu-upgrade-linux-image-generic-lpae-lts-xenialubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-gke-4-15ubuntu-upgrade-linux-image-gke-5-0ubuntu-upgrade-linux-image-gke-5-3ubuntu-upgrade-linux-image-gkeop-5-3ubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-lowlatency-hwe-18-04ubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-oemubuntu-upgrade-linux-image-oem-osp1ubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-oracle-lts-18-04ubuntu-upgrade-linux-image-powerpc-e500mcubuntu-upgrade-linux-image-powerpc-e500mc-lts-xenialubuntu-upgrade-linux-image-powerpc-smpubuntu-upgrade-linux-image-powerpc-smp-lts-xenialubuntu-upgrade-linux-image-powerpc64-embubuntu-upgrade-linux-image-powerpc64-emb-lts-xenialubuntu-upgrade-linux-image-powerpc64-smpubuntu-upgrade-linux-image-powerpc64-smp-lts-xenialubuntu-upgrade-linux-image-raspiubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-raspi2-hwe-18-04ubuntu-upgrade-linux-image-snapdragonubuntu-upgrade-linux-image-snapdragon-hwe-18-04ubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-hwe-16-04ubuntu-upgrade-linux-image-virtual-hwe-18-04ubuntu-upgrade-linux-image-virtual-lts-xenial

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today