Lucene search
Ubuntu.comUB:CVE-2020-27418HistoryAug 22, 2023 - 12:00 a.m.
CVE-2020-27418
2023-08-2200:00:00
ubuntu.com
ubuntu.com
15
use after free vulnerability
fedora linux kernel
sensitive information
vgacon_invert_region()
bug
launchpad
duplicates cve-2020-8647
duplicates cve-2020-8649
CVSS2
3.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:N/A:P
CVSS3
6.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
EPSS
0.001
Percentile
24.9%
A Use After Free vulnerability in Fedora Linux kernel 5.9.0-rc9 allows
attackers to obatin sensitive information via vgacon_invert_region()
function.
Bugs
- <https://bugzilla.redhat.com/show_bug.cgi?id=2236834>
- <https://bugzilla.suse.com/show_bug.cgi?id=1214919>
Notes
| Author | Note |
|---|---|
| cache-use-only | Duplicates CVE-2020-8647 and CVE-2020-8649 |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | linux | <Â any | UNKNOWN |
| ubuntu | 16.04 | noarch | linux | <Â 4.4.0-178.208 | UNKNOWN |
| ubuntu | 18.04 | noarch | linux-aws | <Â any | UNKNOWN |
| ubuntu | 14.04 | noarch | linux-aws | <Â 4.4.0-1066.70 | UNKNOWN |
| ubuntu | 16.04 | noarch | linux-aws | <Â 4.4.0-1106.117 | UNKNOWN |
| ubuntu | 16.04 | noarch | linux-aws-hwe | <Â 4.15.0-1066.70~16.04.1 | UNKNOWN |
| ubuntu | 14.04 | noarch | linux-azure | <Â 4.15.0-1082.92~14.04.1 | UNKNOWN |
| ubuntu | 16.04 | noarch | linux-azure | <Â 4.15.0-1082.92~16.04.1 | UNKNOWN |
| ubuntu | 16.04 | noarch | linux-gcp | <Â 4.15.0-1061.65 | UNKNOWN |
| ubuntu | 16.04 | noarch | linux-hwe | <Â 4.15.0-99.100~16.04.1 | UNKNOWN |
Related
redhat
redhat
(RHSA-2022:1213) Important: kernel security update
2022-04-05 14:11:11
(RHSA-2022:1209) Important: kernel-rt security and bug fix update
2022-04-05 14:07:14
ubuntu
ubuntu
Kernel Live Patch Security Notice
2020-05-01 00:00:00
Kernel Live Patch Security Notice
2020-06-09 00:00:00
nessus
nessus
RHEL 8 : kernel (RHSA-2022:1213)
2022-04-06 00:00:00
RHEL 8 : kernel-rt (RHSA-2022:1209)
2022-04-06 00:00:00
openSUSE Security Update : the Linux Kernel (openSUSE-2020-388)
2020-03-30 00:00:00
f5
f5
debiancve
debiancve
cve
cve
prion
prion
Design/Logic Flaw
2023-08-22 19:16:00
Design/Logic Flaw
2020-02-06 01:15:00
Design/Logic Flaw
2020-02-06 01:15:00
redhatcve
redhatcve
cvelist
cvelist
openvas
openvas
openSUSE: Security Advisory for the (openSUSE-SU-2020:0388-1)
2020-03-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:0836-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2020-0140)
2022-01-28 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2020-03-27 00:00:00
nvd
nvd
ubuntucve
ubuntucve
CVE-2020-8649
2020-02-06 00:00:00
CVE-2020-8647
2020-02-06 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-8649 affecting package kernel 5.4.91-6
2021-04-06 23:51:14
CVE-2020-8647 affecting package kernel 5.4.91-6
2021-04-06 23:51:14
veracode
veracode
Denial Of Service (DoS)
2020-11-05 03:09:54
Out Of Bound Reads (OOB)
2020-11-05 03:09:53
photon
photon
Important Photon OS Security Update - PHSA-2020-0221
2020-03-17 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0287
2020-04-04 00:00:00
Important Photon OS Security Update - PHSA-2020-0073
2020-03-27 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2020-05-18 00:00:00
Unbreakable Enterprise kernel security update
2020-05-11 00:00:00
Unbreakable Enterprise kernel security update
2020-05-06 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2020-03-14 02:19:55
Updated kernel-linus packages fix security vulnerabilities
2020-04-04 01:53:32
amazon
amazon
Important: kernel
2020-03-23 16:25:00
Medium: kernel
2020-04-20 19:25:00
cloudlinux
cloudlinux
Fix of 13 CVEs
2022-04-21 21:21:15
ibm
ibm
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2020-03-26 23:13:28
osv
osv
linux - security update
2020-06-09 00:00:00
linux-4.9 - security update
2020-06-09 00:00:00
linux - security update
2020-06-09 00:00:00
debian
debian
[SECURITY] [DLA 2242-1] linux-4.9 security update
2020-06-10 10:48:38
[SECURITY] [DSA 4698-1] linux security update
2020-06-09 19:44:16
[SECURITY] [DSA 4698-1] linux security update
2020-06-09 19:44:16
threatpost
threatpost
Two Critical Android Bugs Open Door to RCE
2020-06-02 17:10:58
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2020-11-03 12:03:57
centos
centos
bpftool, kernel, perf, python security update
2020-10-20 18:20:15
androidsecurity
androidsecurity
Pixel Update Bulletin—September 2020
2020-09-08 00:00:00
CVSS2
3.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:N/A:P
CVSS3
6.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
EPSS
0.001
Percentile
24.9%
Related for UB:CVE-2020-27418