vulnerability

Ubuntu: (Multiple Advisories) (CVE-2020-25284): Linux kernel vulnerabilities

Severity
2
CVSS
(AV:L/AC:M/Au:N/C:N/I:P/A:N)
Published
2020-09-13
Added
2020-12-02
Modified
2025-01-23

Description

The rbd block device driver in drivers/block/rbd.c in the Linux kernel through 5.8.9 used incomplete permission checking for access to rbd devices, which could be leveraged by local attackers to map or unmap rbd block devices, aka CID-f44d04e696fe.

Solution(s)

ubuntu-upgrade-linux-image-4-15-0-1059-oracleubuntu-upgrade-linux-image-4-15-0-1074-gkeubuntu-upgrade-linux-image-4-15-0-1074-raspi2ubuntu-upgrade-linux-image-4-15-0-1079-kvmubuntu-upgrade-linux-image-4-15-0-1088-awsubuntu-upgrade-linux-image-4-15-0-1088-gcpubuntu-upgrade-linux-image-4-15-0-1091-snapdragonubuntu-upgrade-linux-image-4-15-0-1100-azureubuntu-upgrade-linux-image-4-15-0-1103-oemubuntu-upgrade-linux-image-4-15-0-126-genericubuntu-upgrade-linux-image-4-15-0-126-generic-lpaeubuntu-upgrade-linux-image-4-15-0-126-lowlatencyubuntu-upgrade-linux-image-4-4-0-1082-awsubuntu-upgrade-linux-image-4-4-0-1084-kvmubuntu-upgrade-linux-image-4-4-0-1118-awsubuntu-upgrade-linux-image-4-4-0-1142-raspi2ubuntu-upgrade-linux-image-4-4-0-1146-snapdragonubuntu-upgrade-linux-image-4-4-0-197-genericubuntu-upgrade-linux-image-4-4-0-197-generic-lpaeubuntu-upgrade-linux-image-4-4-0-197-lowlatencyubuntu-upgrade-linux-image-4-4-0-197-powerpc-e500mcubuntu-upgrade-linux-image-4-4-0-197-powerpc-smpubuntu-upgrade-linux-image-4-4-0-197-powerpc64-embubuntu-upgrade-linux-image-4-4-0-197-powerpc64-smpubuntu-upgrade-linux-image-5-4-0-1023-raspiubuntu-upgrade-linux-image-5-4-0-1028-kvmubuntu-upgrade-linux-image-5-4-0-1030-awsubuntu-upgrade-linux-image-5-4-0-1030-gcpubuntu-upgrade-linux-image-5-4-0-1030-oracleubuntu-upgrade-linux-image-5-4-0-1032-azureubuntu-upgrade-linux-image-5-4-0-56-genericubuntu-upgrade-linux-image-5-4-0-56-generic-lpaeubuntu-upgrade-linux-image-5-4-0-56-lowlatencyubuntu-upgrade-linux-image-5-6-0-1048-oemubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-hweubuntu-upgrade-linux-image-aws-lts-18-04ubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-azure-edgeubuntu-upgrade-linux-image-azure-lts-18-04ubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-gcp-lts-18-04ubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-hwe-18-04ubuntu-upgrade-linux-image-generic-hwe-20-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-16-04ubuntu-upgrade-linux-image-generic-lpae-hwe-18-04ubuntu-upgrade-linux-image-generic-lpae-hwe-20-04ubuntu-upgrade-linux-image-generic-lpae-lts-xenialubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-gke-4-15ubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-lowlatency-hwe-18-04ubuntu-upgrade-linux-image-lowlatency-hwe-20-04ubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-oemubuntu-upgrade-linux-image-oem-20-04ubuntu-upgrade-linux-image-oem-osp1ubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-oracle-lts-18-04ubuntu-upgrade-linux-image-powerpc-e500mcubuntu-upgrade-linux-image-powerpc-e500mc-lts-xenialubuntu-upgrade-linux-image-powerpc-smpubuntu-upgrade-linux-image-powerpc-smp-lts-xenialubuntu-upgrade-linux-image-powerpc64-embubuntu-upgrade-linux-image-powerpc64-emb-lts-xenialubuntu-upgrade-linux-image-powerpc64-smpubuntu-upgrade-linux-image-powerpc64-smp-lts-xenialubuntu-upgrade-linux-image-raspiubuntu-upgrade-linux-image-raspi-hwe-18-04ubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-snapdragonubuntu-upgrade-linux-image-snapdragon-hwe-18-04ubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-hwe-16-04ubuntu-upgrade-linux-image-virtual-hwe-18-04ubuntu-upgrade-linux-image-virtual-hwe-20-04ubuntu-upgrade-linux-image-virtual-lts-xenial
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.