A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2020/10/30/1 | Exploit Mailing List Patch Third Party Advisory |
http://www.openwall.com/lists/oss-security/2020/11/04/3 | Exploit Mailing List Patch Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=1893287%2C | |
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=90bfdeef83f1d6c696039b6a917190dcbbad3220 | Mailing List Patch Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2020/12/msg00015.html | Mailing List Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2020/12/msg00027.html | Mailing List Third Party Advisory |
https://security.netapp.com/advisory/ntap-20210702-0005/ | Third Party Advisory |
https://www.openwall.com/lists/oss-security/2020/10/30/1%2C | |
https://www.openwall.com/lists/oss-security/2020/11/04/3%2C |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
History
07 Nov 2023, 03:20
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
28 Jul 2023, 19:39
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
05 Aug 2022, 15:59
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-416 |
CWE-662 |
13 May 2022, 19:45
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1893287, - Broken Link, Issue Tracking | |
First Time |
Netapp 500f
Netapp h300e Firmware Netapp h410s Firmware Netapp solidfire \& Hci Management Node Netapp h410c Firmware Netapp Netapp h500s Firmware Netapp 500f Firmware Netapp h700s Netapp h500e Firmware Netapp solidfire Baseboard Management Controller Netapp h700e Netapp h300e Netapp cloud Backup Netapp h700e Firmware Netapp a250 Netapp h300s Firmware Netapp h410c Netapp h700s Firmware Netapp h500s Netapp a250 Firmware Netapp h500e Netapp h300s Netapp h410s Netapp solidfire Baseboard Management Controller Firmware |
|
CPE | cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:a250_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:500f_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:a250:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:500f:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* |
04 Jun 2021, 12:33
Type | Values Removed | Values Added |
---|---|---|
References | (MLIST) http://www.openwall.com/lists/oss-security/2020/11/04/3 - Exploit, Mailing List, Patch, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2020/10/30/1 - Exploit, Mailing List, Patch, Third Party Advisory | |
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1893287, - Broken Link | |
References | (MISC) https://www.openwall.com/lists/oss-security/2020/10/30/1, - Exploit, Mailing List, Patch, Third Party Advisory | |
References | (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=90bfdeef83f1d6c696039b6a917190dcbbad3220 - Mailing List, Patch, Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2020/12/msg00015.html - Mailing List, Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2020/12/msg00027.html - Mailing List, Third Party Advisory | |
References | (MISC) https://www.openwall.com/lists/oss-security/2020/11/04/3, - Exploit, Mailing List, Patch, Third Party Advisory | |
CPE | cpe:2.3:o:linux:linux_kernel:5.9.2:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 6.9
v3 : 7.0 |
26 May 2021, 12:44
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-362 CWE-416 |
26 May 2021, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-05-26 12:15
Updated : 2023-12-10 13:55
NVD link : CVE-2020-25668
Mitre link : CVE-2020-25668
CVE.ORG link : CVE-2020-25668
JSON object : View
Products Affected
netapp
- h700e
- h700s_firmware
- h500s_firmware
- solidfire_baseboard_management_controller_firmware
- h700s
- cloud_backup
- h700e_firmware
- h410c_firmware
- solidfire_\&_hci_management_node
- solidfire_baseboard_management_controller
- h300e_firmware
- 500f_firmware
- h300s_firmware
- h500e_firmware
- h410c
- h500s
- a250_firmware
- h410s_firmware
- h300e
- a250
- h410s
- h300s
- 500f
- h500e
linux
- linux_kernel
debian
- debian_linux