In the Linux kernel before 5.5.8 get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field which might allow attackers to trigger kernel stack corruption via crafted system calls.

🗓️ 25 Sep 2020 07:00:00Reported by MicrosoftType

mscve

mscve🔗 msrc.microsoft.com👁 1 Views

In Linux kernel before 5.5.8, get_raw_socket lacks socket family validation, risking corruption

Reporter	Title	Published	Views	Family All 341
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by multiple vulnerabilities.	22 Nov 202206:42	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by kernel vulnerabilities	13 Apr 202116:24	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	27 Jan 202100:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus	1 Apr 202000:35	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities	2 Feb 202105:06	–	ibm
Tenable Nessus	Amazon Linux 2 : kernel (ALAS-2020-1405)	26 Mar 202000:00	–	nessus
Tenable Nessus	Amazon Linux AMI : kernel (ALAS-2020-1360)	24 Apr 202000:00	–	nessus
Tenable Nessus	AlmaLinux 8 : kernel (ALSA-2020:4431)	9 Feb 202200:00	–	nessus
Tenable Nessus	CentOS 8 : kernel (CESA-2020:4431)	1 Feb 202100:00	–	nessus
Tenable Nessus	CentOS 7 : kernel (RHSA-2020:4060)	20 Oct 202000:00	–	nessus

Vulners

Node

microsoft cm1_kernel_5.4.91-3Range<5.4.91-3

25 Sep 2020 07:00Current

8.2High risk

Vulners AI Score8.2

CVSS 3.15.3

CVSS 25.4

EPSS0.00073

linux kernel raw socket vhost net socket family kernel stack crafted system calls