CVE-2020-25669

Name
CVE-2020-25669
Description
A vulnerability was found in the Linux Kernel where the function sunkbd_reinit having been scheduled by sunkbd_interrupt before sunkbd being freed. Though the dangling pointer is set to NULL in sunkbd_disconnect, there is still an alias in sunkbd_reinit causing Use After Free.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://github.com/torvalds/linux/commit/77e70d351db7de07a46ac49b87a6c3c7a60fca7e
MLIST https://lists.debian.org/debian-lts-announce/2020/12/msg00027.html
MLIST http://www.openwall.com/lists/oss-security/2020/11/20/5
MLIST https://lists.debian.org/debian-lts-announce/2020/12/msg00015.html
MLIST http://www.openwall.com/lists/oss-security/2020/11/05/2
MISC https://www.openwall.com/lists/oss-security/2020/11/05/2,
MISC https://www.openwall.com/lists/oss-security/2020/11/20/5,
CONFIRM https://security.netapp.com/advisory/ntap-20210702-0006/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:o:linux:linux_kernel:5.9.4:*:*:*:*:*:*:* linux_kernel == None == 5.9.4

Vulnerable and fixed packages

Source package Branch Version Maintainer Status