Уязвимость CVE-2020-28941: Информация
Описание
An issue was discovered in drivers/accessibility/speakup/spk_ttyio.c in the Linux kernel through 5.9.9. Local attackers on systems with the speakup driver could cause a local denial of service attack, aka CID-d41227544427. This occurs because of an invalid free when the line discipline is used more than once.
Важность: MEDIUM (5,5) Вектор: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Исправленные пакеты
Ссылки на рекомендации, решения и инструменты
Ссылка | Ресурс |
---|---|
[oss-security] 20201119 Re: Linux kernel NULL-ptr deref bug in spk_ttyio_ldisc_close |
|
https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/tty.git/commit/?h=tty-linus&id=d4122754442799187d5d537a9c039a49a67e57f1 |
|
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d4122754442799187d5d537a9c039a49a67e57f1 |
|
https://www.openwall.com/lists/oss-security/2020/11/19/3 |
|
https://github.com/torvalds/linux/commit/d4122754442799187d5d537a9c039a49a67e57f1 |
|
[debian-lts-announce] 20201210 [SECURITY] [DLA 2483-1] linux-4.19 security update |
|
FEDORA-2020-4700a73bd5 | |
FEDORA-2020-8c15928d23 |