In the Linux kernel before 5.4.12, drivers/input/input.c has out-of-bounds writes via a crafted keycode table, as demonstrated by input_set_keycode, aka CID-cb222aed03d7.
References
Link | Resource |
---|---|
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.12 | Release Notes Vendor Advisory |
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cb222aed03d798fc074be55e59d9a112338ee784 | Patch Vendor Advisory |
https://github.com/torvalds/linux/commit/cb222aed03d798fc074be55e59d9a112338ee784 | Patch Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html | Mailing List Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html | Mailing List Third Party Advisory |
https://security.netapp.com/advisory/ntap-20200430-0004/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
09 Nov 2023, 13:57
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:netapp:baseboard_management_controller_h610c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h300s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h610s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h615c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h700s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h410s:-:*:*:*:*:*:*:* |
cpe:2.3:h:netapp:h615c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h610c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* |
First Time |
Netapp h500s
Netapp h700s Netapp h615c Netapp h610s Netapp h410s Netapp h610c Netapp h300s |
20 Oct 2023, 21:00
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:netapp:baseboard_management_controller_h410s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:fas_baseboard_management_controller_a800:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:fas_8700:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:fas_8300:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:fas_baseboard_management_controller_a220:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h700s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:fas_baseboard_management_controller_c190:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:fas_a400:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h615c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h610c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:fas_baseboard_management_controller_a320:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h500s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h300s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:baseboard_management_controller_h610s:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:* |
|
References | (MLIST) https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html - Mailing List, Third Party Advisory | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20200430-0004/ - Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html - Mailing List, Third Party Advisory | |
First Time |
Netapp fas Baseboard Management Controller C190
Netapp baseboard Management Controller H610s Netapp fas Baseboard Management Controller A220 Netapp baseboard Management Controller H610c Netapp cloud Backup Netapp Netapp fas 8700 Netapp fas Baseboard Management Controller A800 Netapp baseboard Management Controller H500s Netapp solidfire Netapp fas 8300 Netapp baseboard Management Controller H410s Netapp steelstore Cloud Integrated Storage Netapp baseboard Management Controller H700s Netapp fas A400 Netapp fas Baseboard Management Controller A320 Netapp baseboard Management Controller H300s Netapp baseboard Management Controller H615c |
Information
Published : 2020-04-08 14:15
Updated : 2023-12-10 13:27
NVD link : CVE-2019-20636
Mitre link : CVE-2019-20636
CVE.ORG link : CVE-2019-20636
JSON object : View
Products Affected
netapp
- fas_baseboard_management_controller_a220
- h500s
- h300s
- h410s
- cloud_backup
- h610s
- steelstore_cloud_integrated_storage
- h615c
- fas_baseboard_management_controller_a320
- fas_8700
- solidfire
- fas_baseboard_management_controller_c190
- h610c
- fas_8300
- fas_baseboard_management_controller_a800
- h700s
- fas_a400
linux
- linux_kernel
CWE
CWE-787
Out-of-bounds Write