CVE-2020-14416

A use-after-free flaw was found in slcanwritewakeup in drivers/net/can/slcan.c in the serial CAN module slcan. A race condition occurs when communicating with can using slcan between the write scheduling the transmit and closing flushing out any pending queues the SLCAN channel. This flaw allows ...

CVE-2020-10781

A flaw was found in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hotadd file can create ZRAM device nodes in the /dev/ directory. This read allocates kernel memory and is not accounted for a user that triggers the creation of that...

CVE-2020-4411

The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service vulnerability in its kernel module that could allow an attacker to cause a denial of service condition on the affected system. To exploit this vulnerability, a local...

Design/Logic Flaw

The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service vulnerability in its kernel module that could allow an attacker to cause a denial of service condition on the affected system. To exploit this vulnerability, a local...

CVE-2020-4411

CVE-2020-4411 affects IBM Spectrum Scale kernel module in Spectrum Scale 4.2.0.0–4.2.3.21 and 5.0.0.0–5.0.4.3. A local attacker can trigger a denial-of-service by invoking a subset of ioctls with invalid arguments, potentially crashing the kernel. Affected IBM products include IBM Spectrum Scale ...

CVE-2020-4411

The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service vulnerability in its kernel module that could allow an attacker to cause a denial of service condition on the affected system. To exploit this vulnerability, a local...

CVE-2020-11609

A flaw was found in the way the stv06xx driver in the Linux kernel handled certain types of USB descriptors. This flaw allows an attacker with the ability to induce the error conditions to crash the system. Mitigation In order to mitigate this issue it is possible to prevent the affected code fro...

CVE-2020-12654

A flaw was found in the Linux kernel. The Marvell mwifiex driver allows a remote WiFi access point to trigger a heap-based memory buffer overflow due to an incorrect memcpy operation. The highest threat from this vulnerability is to data integrity and system availability. Mitigation In order to...

CVE-2020-12653

A flaw was found in the way the mwifiexcmdappendvsietlv in Linux kernel's Marvell WiFi-Ex driver handled vendor specific information elements. A local user could use this flaw to escalate their privileges on the system. Mitigation In order to mitigate this issue it is possible to prevent the...

CVE-2020-12465

A memory overflow and data corruption flaw were found in the Mediatek MT76 driver module for WiFi in mt76addfragment in drivers/net/wireless/mediatek/mt76/dma.c. An oversized packet with too many rx fragments causes an overflow and corruption in memory of adjacent pages. A local attacker with a...

Design/Logic Flaw

gssmechfree in net/sunrpc/authgss/gssmechswitch.c in the rpcsecgsskrb5 implementation in the Linux kernel through 5.6.10 lacks certain domainrelease calls, leading to a memory leak. Note: This was disputed with the assertion that the issue does not grant any access not already available. It is a...

CVE-2020-12656

gssmechfree in net/sunrpc/authgss/gssmechswitch.c in the rpcsecgsskrb5 implementation in the Linux kernel through 5.6.10 lacks certain domainrelease calls, leading to a memory leak. Note: This was disputed with the assertion that the issue does not grant any access not already available. It is a...

kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure

An out-of-bounds OOB memory access flaw was found in the Qlogic ISCSI module in the Linux kernel's qedidbg family of functions in drivers/scsi/qedi/qedidbg.c. Here a local attacker with a special user privilege account or a root can cause an out-of-bound memory access leading to a system crash or...

Synology DSM AppArmor synosearchagent misconfiguration vulnerability

Summary A misconfiguration exists in AppArmor’s synosearchagent profile of Synology DSM 6.2.3 25426 DS120j. A specially crafted kernel module can be loaded, leading to a bypass of AppArmor’s restrictions. An attacker can use insmod to trigger this vulnerability. Tested Versions Synology DSM 6.2.3...

OracleVM 3.3 : ipmitool (OVMSA-2020-0012)

The remote OracleVM system is missing necessary patches to address critical security updates : - Backport fix for CVE-2020-5208 - Fix missing return in ipmikontronoemmain - CID1261317 - rebase to latest stable upstream version - resolves: rhbz1253416 - remove the redundant OpenIMPI dependency -...

CVE-2019-0154

A flaw was found in Intel graphics hardware GPU where a local attacker with the ability to issue an ioctl could trigger a hardware level crash if MMIO registers were read while the graphics card was in a low-power state. This creates a denial of service situation and the GPU and connected display...

CVE-2019-19054

A flaw was found in the Linux kernel. The CX23888 Integrated Consumer Infrared Controller probe code handles resource cleanup low memory conditions. A local attacker able to induce low memory conditions could use this flaw to crash the system. The highest threat from this vulnerability is to syst...

CVE-2019-17055

A vulnerability was found in the Linux kernel’s implementation of the AFISDN protocol, which does not enforce the CAPNETRAW capability. This flaw can allow unprivileged users to create a raw socket for this protocol. This could further allow the user to control the availability of an existing ISD...

Unspecified Vulnerability in Samsung Mobile Devices (CNVD-2020-40816)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have a security vulnerability that can be exploited by attackers to bypass the ko i.e. kernel module signature by modifying the number of...

CVE-2019-11487

A flaw was found in the Linux kernel's implementation of the FUSE filesystem, where it allows a page reference counter overflow. If a page reference counter overflows into a negative value, it can be placed back into the "free" list for reuse by other applications. This flaw allows a local attack...