Lucene search

K
redhatcveRedhat.comRH:CVE-2020-14416
HistoryJun 23, 2020 - 8:26 a.m.

CVE-2020-14416

2020-06-2308:26:46
redhat.com
access.redhat.com
17

0.0005 Low

EPSS

Percentile

15.9%

A use-after-free flaw was found in slcan_write_wakeup in drivers/net/can/slcan.c in the serial CAN module slcan. A race condition occurs when communicating with can using slcan between the write (scheduling the transmit) and closing (flushing out any pending queues) the SLCAN channel. This flaw allows a local attacker with special user or root privileges to cause a denial of service or a kernel information leak. The highest threat from this vulnerability is to system availability.

Mitigation

Mitigation for this issue is to skip loading the affected module 'slcan' and 'slip' onto the system until a fix is available. Using a blacklist mechanism will ensure the driver is not loaded at boot time and requires specific hardware (CANbus hardware), which is not in use on the system.

How do I blacklist a kernel module to prevent it from loading automatically?  
https://access.redhat.com/solutions/41278