Lucene search

K
ubuntucveUbuntu.comUB:CVE-2020-13143
HistoryMay 18, 2020 - 12:00 a.m.

CVE-2020-13143

2020-05-1800:00:00
ubuntu.com
ubuntu.com
33

0.007 Low

EPSS

Percentile

79.5%

gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux
kernel 3.16 through 5.6.13 relies on kstrdup without considering the
possibility of an internal ‘\0’ value, which allows attackers to trigger an
out-of-bounds read, aka CID-15753588bcd4.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-109.110UNKNOWN
ubuntu19.10noarchlinux< 5.3.0-62.56UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-40.44UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-185.215UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1077.81UNKNOWN
ubuntu19.10noarchlinux-aws< 5.3.0-1030.32UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1018.18UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1074.78) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1110.121UNKNOWN
ubuntu18.04noarchlinux-aws-5.3< 5.3.0-1030.32~18.04.1UNKNOWN
Rows per page:
1-10 of 491