An issue was discovered in the Linux kernel before 5.6. svm_cpu_uninit in arch/x86/kvm/svm.c has a memory leak, aka CID-d80b64ff297e. NOTE: third parties dispute this issue because it's a one-time leak at the boot, the size is negligible, and it can't be triggered at will
References
Link | Resource |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=1171736#c3 | Issue Tracking Third Party Advisory |
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.6 | Mailing List Patch Vendor Advisory |
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d80b64ff297e40c2b6f7d7abc1b3eba70d22a068 | Mailing List Patch Vendor Advisory |
https://usn.ubuntu.com/4411-1/ | Third Party Advisory |
https://usn.ubuntu.com/4412-1/ | Third Party Advisory |
https://usn.ubuntu.com/4413-1/ | Third Party Advisory |
https://www.debian.org/security/2020/dsa-4699 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
07 Nov 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
Summary | An issue was discovered in the Linux kernel before 5.6. svm_cpu_uninit in arch/x86/kvm/svm.c has a memory leak, aka CID-d80b64ff297e. NOTE: third parties dispute this issue because it's a one-time leak at the boot, the size is negligible, and it can't be triggered at will |
27 Apr 2022, 16:37
Type | Values Removed | Values Added |
---|---|---|
References | (UBUNTU) https://usn.ubuntu.com/4413-1/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4411-1/ - Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2020/dsa-4699 - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4412-1/ - Third Party Advisory | |
References | (MISC) https://bugzilla.suse.com/show_bug.cgi?id=1171736#c3 - Issue Tracking, Third Party Advisory | |
First Time |
Canonical ubuntu Linux
Debian Debian debian Linux Canonical |
|
CWE | CWE-401 | |
CPE | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:* cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:* |
Information
Published : 2020-05-09 21:15
Updated : 2024-04-11 01:06
NVD link : CVE-2020-12768
Mitre link : CVE-2020-12768
CVE.ORG link : CVE-2020-12768
JSON object : View
Products Affected
linux
- linux_kernel
debian
- debian_linux
canonical
- ubuntu_linux
CWE
CWE-401
Missing Release of Memory after Effective Lifetime