Lucene search
Veracode Vulnerability DatabaseVERACODE:39066HistoryJan 31, 2023 - 1:33 p.m.
Use-after-free
2023-01-3113:33:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
19
kernel
use-after-free
vulnerability
race condition
application crash
`vt_disallocate` ioctl
0.001 Low
EPSS
Percentile
23.8%
kernel is vulnerable to Use-after-free. A race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free resulting in an application crash.
References
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/
access.redhat.com/errata/RHSA-2021:1578
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=2112688
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ca4463bf8438b403596edd0ec961ca0d4fbe0220
Related
cve
cve
CVE-2020-36557
2022-07-21 04:15:09
nvd
nvd
CVE-2020-36557
2022-07-21 04:15:09
ubuntucve
ubuntucve
CVE-2020-36557
2022-07-21 00:00:00
cvelist
cvelist
CVE-2020-36557
2022-07-21 03:46:49
prion
prion
Race condition
2022-07-21 04:15:00
redhatcve
redhatcve
CVE-2020-36557
2022-07-31 17:44:29
debiancve
debiancve
CVE-2020-36557
2022-07-21 04:15:09
broadcom
broadcom
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2712)
2022-11-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2719-1)
2022-08-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2720-1)
2022-08-10 00:00:00
nessus
nessus
EulerOS 2.0 SP5 : kernel (EulerOS-SA-2022-2712)
2022-11-04 00:00:00
ibm
ibm
suse
suse
Security update for the Linux Kernel (important)
2022-08-16 00:00:00
Security update for the Linux Kernel (important)
2022-08-10 00:00:00
Security update for the Linux Kernel (important)
2022-09-01 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2022-09-06 00:00:00
redhat
redhat
(RHSA-2021:1578) Important: kernel security, bug fix, and enhancement update
2021-05-18 05:33:57