CVE-2020-25221

Опубликовано: 10 сент. 2020

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.2

CVSS3: 7.8

Описание

get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting (caused by gate page mishandling) of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit process that can use ptrace() or process_vm_readv(), aka CID-9fa2dd946743.

Релиз	Статус	Примечание
bionic	not-affected	4.13.0-16.19
devel	not-affected
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/bionic	not-affected	4.13.0-16.19
esm-infra/focal	not-affected	5.4.0-9.12
esm-infra/xenial	not-affected	4.2.0-16.19
focal	not-affected	5.4.0-9.12
groovy	not-affected	5.8.0-19.20
precise/esm	ignored	end of life, was needs-triage
trusty	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1001.1
devel	not-affected
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/bionic	not-affected	4.15.0-1001.1
esm-infra/focal	not-affected	5.4.0-1005.5
esm-infra/xenial	not-affected	4.4.0-1001.10
focal	not-affected	5.4.0-1005.5
groovy	not-affected	5.8.0-1006.6
precise/esm	DNE
trusty	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-aws-5.3, was needs-triage
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-aws-5.4, was needs-triage
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.4.0-1018.18~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	5.4.0-1018.18~18.04.1
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
esm-infra/xenial	not-affected	4.15.0-1030.31~16.04.1
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	not-affected
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/bionic	ignored	superseded by linux-azure-5.3, was needs-triage
esm-infra/focal	not-affected	5.4.0-1006.6
esm-infra/xenial	not-affected	4.11.0-1009.9
focal	not-affected	5.4.0-1006.6
groovy	not-affected	5.8.0-1005.5
precise/esm	DNE
trusty	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1082.92
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1082.92
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-azure-5.4, was needs-triage
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.4.0-1020.20~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	5.4.0-1020.20~18.04.1
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-azure-5.3, was needs-triage
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	not-affected
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-gcp-5.3, was needs-triage
esm-infra/focal	not-affected	5.4.0-1005.5
esm-infra/xenial	not-affected	4.10.0-1004.4
focal	not-affected	5.4.0-1005.5
groovy	not-affected	5.8.0-1003.3
precise/esm	DNE
trusty	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1071.81
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1071.81
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-gcp-5.4, was needs-triage
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.4.0-1019.19~18.04.2
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	5.4.0-1019.19~18.04.2
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	end of kernel support, was needs-triage
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1030.32
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1030.32
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.0.0-1011.11~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.3.0-1011.12~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.18.0-13.14~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.18.0-13.14~18.04.1
esm-infra/focal	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.4.0-37.41~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	5.4.0-37.41~18.04.1
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-hwe-5.4, was needs-triage
esm-infra/focal	DNE
esm-infra/xenial	ignored	superseded by linux-hwe, was needs-triage
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.2
devel	not-affected
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1002.2
esm-infra/focal	not-affected	5.4.0-1004.4
esm-infra/xenial	not-affected	4.4.0-1004.9
focal	not-affected	5.4.0-1004.4
groovy	not-affected	5.8.0-1002.2
precise/esm	DNE
trusty	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	ignored	end of life, was needs-triage
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	ignored	end of ESM support, was ignored [was needs-triage ESM criteria]
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.3
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1002.3
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	not-affected	5.6.0-1007.7
focal	not-affected	5.6.0-1007.7
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.0.0-1010.11
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1007.9
devel	not-affected
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1007.9
esm-infra/focal	not-affected	5.4.0-1005.5
esm-infra/xenial	not-affected	4.15.0-1007.9~16.04.1
focal	not-affected	5.4.0-1005.5
groovy	not-affected	5.8.0-1002.2
precise/esm	DNE
trusty	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-oracle-5.3, was needs-triage
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored	superseded by linux-oracle-5.4, was needs-triage
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.4.0-1019.19~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	5.4.0-1019.19~18.04.1
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	not-affected
esm-infra-legacy/trusty	DNE
esm-infra/focal	not-affected	5.4.0-1007.7
focal	not-affected	5.4.0-1007.7
groovy	not-affected	5.8.0-1003.6
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.4.0-1013.13~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	5.4.0-1013.13~18.04.1
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.13.0-1005.5
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	ignored	replaced by linux-raspi
focal	ignored	end of standard support, was needs-triage
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.3.0-1017.19~18.04.1
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	not-affected
esm-infra-legacy/trusty	DNE
esm-infra/focal	not-affected	5.4.0-24.28
focal	not-affected	5.4.0-24.28
groovy	not-affected	5.8.0-3.3
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.4.0-1077.82
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	5.9~rc4

Показывать по

Ссылки на источники

EPSS

Процентиль: 41%

0.00193

Низкий

7.2 High

CVSS2

7.8 High

CVSS3

Связанные уязвимости

CVE-2020-25221

CVSS3: 7.8

redhat

больше 5 лет назад

CVE-2020-25221

CVSS3: 7.8

nvd

больше 5 лет назад

CVE-2020-25221

CVSS3: 7.8

debian

больше 5 лет назад

get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5 ...

GHSA-442r-3r9f-48cm

CVSS3: 7.8

github

больше 3 лет назад

EPSS

Процентиль: 41%

0.00193

Низкий

7.2 High

CVSS2

7.8 High

CVSS3

CVE-2020-25221

Описание

Пакет linux

Пакет linux-aws

Пакет linux-aws-5.0

Пакет linux-aws-5.3

Пакет linux-aws-5.4

Пакет linux-aws-hwe

Пакет linux-azure

Пакет linux-azure-4.15

Пакет linux-azure-5.3

Пакет linux-azure-5.4

Пакет linux-azure-edge

Пакет linux-gcp

Пакет linux-gcp-4.15

Пакет linux-gcp-5.3

Пакет linux-gcp-5.4

Пакет linux-gcp-edge

Пакет linux-gke-4.15

Пакет linux-gke-5.0

Пакет linux-gke-5.3

Пакет linux-hwe

Пакет linux-hwe-5.4

Пакет linux-hwe-edge

Пакет linux-kvm

Пакет linux-lts-trusty

Пакет linux-lts-xenial

Пакет linux-oem

Пакет linux-oem-5.6

Пакет linux-oem-osp1

Пакет linux-oracle

Пакет linux-oracle-5.0

Пакет linux-oracle-5.3

Пакет linux-oracle-5.4

Пакет linux-raspi

Пакет linux-raspi-5.4

Пакет linux-raspi2

Пакет linux-raspi2-5.3

Пакет linux-riscv

Пакет linux-snapdragon

Ссылки на источники

Связанные уязвимости