Lucene search

K
ubuntucveUbuntu.comUB:CVE-2020-13974
HistoryJun 09, 2020 - 12:00 a.m.

CVE-2020-13974

2020-06-0900:00:00
ubuntu.com
ubuntu.com
32

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

33.4%

An issue was discovered in the Linux kernel 4.4 through 5.7.1.
drivers/tty/vt/keyboard.c has an integer overflow if k_ascii is called
several times in a row, aka CID-b86dab054059. NOTE: Members in the
community argue that the integer overflow does not lead to a security issue
in this case.

Notes

Author Note
sbeattie reproducer in lore.kernel.org link
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-115.116UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-45.49UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-186.216UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1080.84UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1022.22UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1075.79UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1111.123UNKNOWN
ubuntu18.04noarchlinux-aws-5.3< 5.3.0-1032.34~18.04.2UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1022.22~18.04.1UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1080.84~16.04.1UNKNOWN
Rows per page:
1-10 of 471

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

33.4%