vulnerability

Ubuntu: USN-4678-1 (CVE-2020-29534): Linux kernel vulnerabilities

Try Surface Command
Back to search
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Dec 3, 2020
Added
Jan 6, 2021
Modified
Mar 22, 2023

Description

An issue was discovered in the Linux kernel before 5.9.3. io_uring takes a non-refcounted reference to the files_struct of the process that submitted a request, causing execve() to incorrectly optimize unshare_fd(), aka CID-0f2122045b94.

Solution(s)

ubuntu-upgrade-linux-image-5-8-0-1011-raspiubuntu-upgrade-linux-image-5-8-0-1011-raspi-nolpaeubuntu-upgrade-linux-image-5-8-0-1014-kvmubuntu-upgrade-linux-image-5-8-0-1014-oracleubuntu-upgrade-linux-image-5-8-0-1015-gcpubuntu-upgrade-linux-image-5-8-0-1016-azureubuntu-upgrade-linux-image-5-8-0-1017-awsubuntu-upgrade-linux-image-5-8-0-34-genericubuntu-upgrade-linux-image-5-8-0-34-generic-64kubuntu-upgrade-linux-image-5-8-0-34-generic-lpaeubuntu-upgrade-linux-image-5-8-0-34-lowlatencyubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-64kubuntu-upgrade-linux-image-generic-hwe-20-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-20-04ubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-20-04ubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-raspiubuntu-upgrade-linux-image-raspi-nolpaeubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-hwe-20-04

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today