vulnerability
Ubuntu: (Multiple Advisories) (CVE-2020-8428): Linux kernel vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:L/Au:N/C:P/I:N/A:P) | Jan 29, 2020 | Apr 7, 2020 | Jan 23, 2025 |
Severity
4
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:P)
Published
Jan 29, 2020
Added
Apr 7, 2020
Modified
Jan 23, 2025
Description
fs/namei.c in the Linux kernel before 5.5 has a may_create_in_sticky use-after-free, which allows local users to cause a denial of service (OOPS) or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a UNIX domain socket, if the socket is being moved to a new parent directory and its old parent directory is being removed.
Solution(s)
ubuntu-upgrade-linux-image-4-15-0-1037-oracleubuntu-upgrade-linux-image-4-15-0-1057-gkeubuntu-upgrade-linux-image-4-15-0-1058-kvmubuntu-upgrade-linux-image-4-15-0-1060-gcpubuntu-upgrade-linux-image-4-15-0-1060-raspi2ubuntu-upgrade-linux-image-4-15-0-1065-awsubuntu-upgrade-linux-image-4-15-0-1076-snapdragonubuntu-upgrade-linux-image-4-15-0-1077-azureubuntu-upgrade-linux-image-4-15-0-1079-oemubuntu-upgrade-linux-image-4-15-0-96-genericubuntu-upgrade-linux-image-4-15-0-96-generic-lpaeubuntu-upgrade-linux-image-4-15-0-96-lowlatencyubuntu-upgrade-linux-image-4-4-0-1065-awsubuntu-upgrade-linux-image-4-4-0-1069-kvmubuntu-upgrade-linux-image-4-4-0-1105-awsubuntu-upgrade-linux-image-4-4-0-1131-raspi2ubuntu-upgrade-linux-image-4-4-0-1135-snapdragonubuntu-upgrade-linux-image-4-4-0-177-genericubuntu-upgrade-linux-image-4-4-0-177-generic-lpaeubuntu-upgrade-linux-image-4-4-0-177-lowlatencyubuntu-upgrade-linux-image-4-4-0-177-powerpc-e500mcubuntu-upgrade-linux-image-4-4-0-177-powerpc-smpubuntu-upgrade-linux-image-4-4-0-177-powerpc64-embubuntu-upgrade-linux-image-4-4-0-177-powerpc64-smpubuntu-upgrade-linux-image-5-0-0-1014-oracleubuntu-upgrade-linux-image-5-0-0-1033-gkeubuntu-upgrade-linux-image-5-0-0-1034-gcpubuntu-upgrade-linux-image-5-0-0-1036-azureubuntu-upgrade-linux-image-5-0-0-1047-oem-osp1ubuntu-upgrade-linux-image-5-3-0-1014-oracleubuntu-upgrade-linux-image-5-3-0-1015-kvmubuntu-upgrade-linux-image-5-3-0-1016-awsubuntu-upgrade-linux-image-5-3-0-1017-gcpubuntu-upgrade-linux-image-5-3-0-1019-azureubuntu-upgrade-linux-image-5-3-0-1022-raspi2ubuntu-upgrade-linux-image-5-3-0-46-genericubuntu-upgrade-linux-image-5-3-0-46-generic-lpaeubuntu-upgrade-linux-image-5-3-0-46-lowlatencyubuntu-upgrade-linux-image-5-3-0-46-snapdragonubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-hweubuntu-upgrade-linux-image-aws-lts-18-04ubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-azure-edgeubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-gcp-edgeubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-hwe-18-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-16-04ubuntu-upgrade-linux-image-generic-lpae-hwe-18-04ubuntu-upgrade-linux-image-generic-lpae-lts-xenialubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-gke-4-15ubuntu-upgrade-linux-image-gke-5-0ubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-lowlatency-hwe-18-04ubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-oemubuntu-upgrade-linux-image-oem-osp1ubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-oracle-edgeubuntu-upgrade-linux-image-oracle-lts-18-04ubuntu-upgrade-linux-image-powerpc-e500mcubuntu-upgrade-linux-image-powerpc-e500mc-lts-xenialubuntu-upgrade-linux-image-powerpc-smpubuntu-upgrade-linux-image-powerpc-smp-lts-xenialubuntu-upgrade-linux-image-powerpc64-embubuntu-upgrade-linux-image-powerpc64-emb-lts-xenialubuntu-upgrade-linux-image-powerpc64-smpubuntu-upgrade-linux-image-powerpc64-smp-lts-xenialubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-raspi2-hwe-18-04ubuntu-upgrade-linux-image-snapdragonubuntu-upgrade-linux-image-snapdragon-hwe-18-04ubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-hwe-16-04ubuntu-upgrade-linux-image-virtual-hwe-18-04ubuntu-upgrade-linux-image-virtual-lts-xenial
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.