CVE-2020-36387

🗓️ 07 Jun 2021 19:19:39Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 90 Views

Issue in Linux kernel before 5.8.2 related to use-after-free in fs/io_uring.

Reporter	Title	Published	Views	Family All 51
CNNVD	Linux kernel 资源管理错误漏洞	7 Jun 202100:00	–	cnnvd
CNVD	Linux kernel post-release reuse vulnerability (CNVD-2021-43364)	8 Jun 202100:00	–	cnvd
Cvelist	CVE-2020-36387	7 Jun 202119:19	–	cvelist
Debian CVE	CVE-2020-36387	7 Jun 202119:19	–	debiancve
EUVD	EUVD-2020-23918	7 Oct 202500:30	–	euvd
NVD	CVE-2020-36387	7 Jun 202120:15	–	nvd
OSV	DEBIAN-CVE-2020-36387	7 Jun 202120:15	–	osv
OSV	OESA-2021-1279 kernel security update	24 Jul 202111:03	–	osv
OSV	UBUNTU-CVE-2020-36387	7 Jun 202120:15	–	osv
Prion	Double free	7 Jun 202120:15	–	prion

NVD

Node

linux linux_kernelRange5.7–5.7.16

linux linux_kernelRange5.8–5.8.2

Node

netapp h300s_firmwareMatch-

AND

netapp h300sMatch-

Node

netapp h500s_firmwareMatch-

AND

netapp h500sMatch-

Node

netapp h700s_firmwareMatch-

AND

netapp h700sMatch-

Node

netapp h300e_firmwareMatch-

AND

netapp h300eMatch-

Node

netapp h500e_firmwareMatch-

AND

netapp h500eMatch-

Node

netapp h700e_firmwareMatch-

AND

netapp h700eMatch-

Node

netapp h410s_firmwareMatch-

AND

netapp h410sMatch-

Node

netapp h410c_firmwareMatch-

AND

netapp h410cMatch-

Source	Link
cdn	www.cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.8.2
git	www.git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/
syzkaller	www.syzkaller.appspot.com/bug
sites	www.sites.google.com/view/syzscope/kasan-use-after-free-read-in-io_async_task_func
security	www.security.netapp.com/advisory/ntap-20210727-0006/

21 Nov 2024 05:29Current

7.3High risk

Vulners AI Score7.3

CVSS 27.2

CVSS 3.17.8

EPSS0.00057

CWE-416