logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2020-25643

Description

A flaw was found in the HDLC_PPP module of the Linux kernel in versions before 5.9-rc7. Memory corruption and a read overflow is caused by improper input validation in the ppp_cp_parse_cr function which can cause the system to crash or cause a denial of service. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.


Affected Software


CPE Name Name Version
linux:linux_kernel linux linux kernel 5.9.0
linux:linux_kernel linux linux kernel 4.4.238
linux:linux_kernel linux linux kernel 4.9.238
linux:linux_kernel linux linux kernel 4.14.200
linux:linux_kernel linux linux kernel 4.19.148
linux:linux_kernel linux linux kernel 5.4.68
linux:linux_kernel linux linux kernel 5.8.12
redhat:enterprise_linux redhat enterprise linux 7.0
redhat:enterprise_linux redhat enterprise linux 8.0
opensuse:leap opensuse leap 15.1
debian:debian_linux debian debian linux 9.0
debian:debian_linux debian debian linux 10.0
opensuse:leap opensuse leap 15.2
netapp:h410c_firmware netapp h410c firmware -
starwindsoftware:starwind_virtual_san starwindsoftware starwind virtual san v8

Related