CVE-2020-8991

Опубликовано: 05 фев. 2020

Источник: redhat

CVSS3: 2.3

Описание

vg_lookup in daemons/lvmetad/lvmetad-core.c in LVM2 2.02 mismanages memory, leading to an lvmetad memory leak, as demonstrated by running pvs. NOTE: RedHat disputes CVE-2020-8991 as not being a vulnerability since there’s no apparent route to either privilege escalation or to denial of service through the bug

Отчет

The lvm2 package as shipped with Red Hat Enterprise Linux 8 is not affected as it doesn't contains the affected component (lvmetad).

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	lvm2	Out of support scope
Red Hat Enterprise Linux 6	lvm2	Out of support scope
Red Hat Enterprise Linux 7	lvm2	Fix deferred
Red Hat Enterprise Linux 8	lvm2	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-772

https://bugzilla.redhat.com/show_bug.cgi?id=1805922lvm2: memory leak in vg_lookup in daemons/lvmetad/lvmetad-core.c

2.3 Low

CVSS3

Связанные уязвимости

CVE-2020-8991

CVSS3: 2.3

ubuntu

почти 6 лет назад

CVE-2020-8991

CVSS3: 2.3

nvd

почти 6 лет назад

CVE-2020-8991

CVSS3: 2.3

debian

почти 6 лет назад

vg_lookup in daemons/lvmetad/lvmetad-core.c in LVM2 2.02 mismanages me ...

GHSA-qhfv-hfvw-jqhq

CVSS3: 2.3

github

больше 3 лет назад

vg_lookup in daemons/lvmetad/lvmetad-core.c in LVM2 2.02 mismanages memory, leading to an lvmetad memory leak, as demonstrated by running pvs.

2.3 Low

CVSS3