Lucene search

K
ubuntuUbuntuLSN-0069-1
HistoryJul 27, 2020 - 12:00 a.m.

Kernel Live Patch Security Notice

2020-07-2700:00:00
ubuntu.com
97

6.5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.2%

Details

Relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local
users to cause a denial of service (such as relay blockage) by triggering a
NULL alloc_percpu result. (CVE-2019-19462)

Fan Yang discovered that the mremap implementation in the Linux kernel did
not properly handle DAX Huge Pages. A local attacker with access to DAX
storage could use this to gain administrative privileges. (CVE-2020-10757)

It was discovered that the DesignWare SPI controller driver in the Linux
kernel contained a race condition. A local attacker could possibly use this
to cause a denial of service (system crash). (CVE-2020-12769)

In the Linux kernel before 5.4.16, a race condition in tty->disc_data
handling in the slip and slcan line discipline could lead to a
use-after-free, aka CID-0ace17d56824. This affects drivers/net/slip/slip.c
and drivers/net/can/slcan.c. (CVE-2020-14416)