Lucene search

K
cvelistRedhatCVELIST:CVE-2020-25669
HistoryMay 26, 2021 - 11:25 a.m.

CVE-2020-25669

2021-05-2611:25:08
CWE-416
redhat
www.cve.org
2

AI Score

8.1

Confidence

High

EPSS

0.001

Percentile

21.6%

A vulnerability was found in the Linux Kernel where the function sunkbd_reinit having been scheduled by sunkbd_interrupt before sunkbd being freed. Though the dangling pointer is set to NULL in sunkbd_disconnect, there is still an alias in sunkbd_reinit causing Use After Free.

CNA Affected

[
  {
    "product": "Linux Kernel",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "5.9.4"
      }
    ]
  }
]

AI Score

8.1

Confidence

High

EPSS

0.001

Percentile

21.6%