CVE-2020-36557

Опубликовано: 21 июл. 2022

Источник: debian

EPSS Низкий

Описание

A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	5.5.17-1		package
linux	fixed	4.19.118-1	buster	package

https://git.kernel.org/linus/ca4463bf8438b403596edd0ec961ca0d4fbe0220 (v5.7-rc1)

EPSS

Процентиль: 1%

0.0001

Низкий

CVE-2020-36557

CVSS3: 5.1

ubuntu

почти 3 года назад

A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.

CVE-2020-36557

CVSS3: 5.1

redhat

около 5 лет назад

A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.

CVE-2020-36557

CVSS3: 5.1

nvd

почти 3 года назад

A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.

GHSA-xjx8-665x-j9wh

CVSS3: 5.1

github

почти 3 года назад

A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.

BDU:2022-04677

CVSS3: 9.6

fstec

около 5 лет назад

Уязвимость реализации вызова VT_DISALLOCATE ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 1%

0.0001

Низкий