An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a local attacker with a user account on the system to gain access to out-of-bounds memory, leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1908251 | Issue Tracking Third Party Advisory |
https://security.netapp.com/advisory/ntap-20210618-0009/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
History
15 Feb 2024, 18:55
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
06 Oct 2022, 17:33
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20210618-0009/ - Third Party Advisory | |
First Time |
Netapp solidfire Baseboard Management Controller Firmware
Netapp h500e Netapp h700e Firmware Netapp h500s Netapp h500e Firmware Netapp h410s Firmware Netapp h300e Netapp h300e Firmware Netapp cloud Backup Netapp h700s Netapp h300s Netapp h700e Netapp solidfire Baseboard Management Controller Netapp h410c Netapp h410c Firmware Netapp Netapp h300s Firmware Netapp h700s Firmware Netapp h410s Netapp h500s Firmware |
|
CPE | cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:* |
18 Jun 2021, 10:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
13 May 2021, 12:56
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1908251 - Issue Tracking, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 7.8 |
CPE | cpe:2.3:o:linux:linux_kernel:5.12:rc5:*:*:*:*:*:* |
06 May 2021, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-05-06 15:15
Updated : 2024-02-15 18:55
NVD link : CVE-2020-35519
Mitre link : CVE-2020-35519
CVE.ORG link : CVE-2020-35519
JSON object : View
Products Affected
netapp
- h700s_firmware
- h410s
- h500e_firmware
- cloud_backup
- h500e
- solidfire_baseboard_management_controller_firmware
- h700e_firmware
- h300s
- h700s
- h300e
- h700e
- h410s_firmware
- h500s
- h300s_firmware
- h410c
- h500s_firmware
- h300e_firmware
- h410c_firmware
- solidfire_baseboard_management_controller
linux
- linux_kernel
CWE
CWE-125
Out-of-bounds Read