2 matches found
CVE-2020-12655
CVE-2020-12655 affects the Linux kernel’s XFS code path: specifically, xfs_agf_verify in fs/xfs/libxfs/xfs_alloc.c up to version 5.6.10. The issue allows an attacker to trigger a sync of excessive duration when processing a crafted XFS v5 image, potentially causing denial of service through prolo...
CVE-2020-12656
CVE-2020-12656 affects the Linux kernel (up to 5.6.10) where gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c of rpcsec_gss_krb5 fails to call domain_release, causing a memory leak when unloading a kernel module. The issue is triggered by privileged module loading/unloading; memory could be...