← Back

CVE-2020-10690

nvd nist
Published: May 8, 2020Modified: Nov 21, 2024

JSON object

Loading...
6.4
Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.5 / Impact: 5.9
Source: NVD

Description

There is a use-after-free in kernel versions before 5.5 due to a race condition between the release of ptp_clock and cdev while resource deallocation. When a (high privileged) process allocates a ptp device file (like /dev/ptpX) and voluntarily goes to sleep. During this time if the underlying device is removed, it can cause an exploitable condition as the process wakes up to terminate and clean all attached files. The system crashes due to the cdev structure being invalid (as already freed) which is pointed to by the inode.

Affected (24)

Show all products
Linux: Linux Kernel · Redhat: Enterprise Linux · Debian: Debian Linux · Canonical: Ubuntu Linux · Opensuse: Leap · Netapp: Active Iq Unified Manager, Element Software, Hci Compute Node, Hci Management Node, Solidfire, Steelstore Cloud Integrated Storage, H300s Firmware, H500s Firmware, H700s Firmware, H300e Firmware, H500e Firmware, H700e Firmware, H410s Firmware, H410c Firmware, H610c Firmware, H610s Firmware, H615c Firmware
Linux
1 product
Linux Kernel
Redhat
1 product
Enterprise Linux
Debian
1 product
Debian Linux
Canonical
1 product
Ubuntu Linux
Opensuse
1 product
Leap
Netapp
17 products
Active Iq Unified Manager
Element Software
Hci Compute Node
Hci Management Node
Solidfire
Steelstore Cloud Integrated Storage
H300s Firmware
H500s Firmware
H700s Firmware
H300e Firmware
H500e Firmware
H700e Firmware
H410s Firmware
H410c Firmware
H610c Firmware
H610s Firmware
H615c Firmware
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Linux Kernel
Before 5.5
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Redhat
Enterprise Linux
Version 7.0
Enterprise Linux
Version 8.0
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Debian Linux
Version 8.0
Configuration D
2 vulnerable
Vulnerable SoftwareAffected Versions
Canonical
Ubuntu Linux
Version 14.04
Ubuntu Linux
Version 16.04
Configuration E
1 vulnerable
Vulnerable SoftwareAffected Versions
Leap
Version 15.1
Configuration F
6 vulnerable
Vulnerable SoftwareAffected Versions
Active Iq Unified Manager
All versions
Element Software
All versions
Hci Compute Node
All versions
Hci Management Node
All versions
Solidfire
All versions
Steelstore Cloud Integrated Storage
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H300s Firmware
All versions
Running on/withPlatform Versions
Netapp
H300s
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H500s Firmware
All versions
Running on/withPlatform Versions
Netapp
H500s
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H700s Firmware
All versions
Running on/withPlatform Versions
Netapp
H700s
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H300e Firmware
All versions
Running on/withPlatform Versions
Netapp
H300e
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H500e Firmware
All versions
Running on/withPlatform Versions
Netapp
H500e
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H700e Firmware
All versions
Running on/withPlatform Versions
Netapp
H700e
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H410s Firmware
All versions
Running on/withPlatform Versions
Netapp
H410s
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H410c Firmware
All versions
Running on/withPlatform Versions
Netapp
H410c
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H610c Firmware
All versions
Running on/withPlatform Versions
Netapp
H610c
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H610s Firmware
All versions
Running on/withPlatform Versions
Netapp
H610s
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H615c Firmware
All versions
Running on/withPlatform Versions
Netapp
H615c
All versions

Related CWEs

CWE-416
Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (12)

Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Issue TrackingPatchThird Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.