github - ghsa-hgvv-3627-37xx

ghsa-hgvv-3627-37xx

Vulnerability from github

Published

2022-05-24 17:17

Modified

2022-05-24 17:17

Details

There is a use-after-free in kernel versions before 5.5 due to a race condition between the release of ptp_clock and cdev while resource deallocation. When a (high privileged) process allocates a ptp device file (like /dev/ptpX) and voluntarily goes to sleep. During this time if the underlying device is removed, it can cause an exploitable condition as the process wakes up to terminate and clean all attached files. The system crashes due to the cdev structure being invalid (as already freed) which is pointed to by the inode.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2020-10690"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-416"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2020-05-08T15:15:00Z",
    "severity": "MODERATE"
  },
  "details": "There is a use-after-free in kernel versions before 5.5 due to a race condition between the release of ptp_clock and cdev while resource deallocation. When a (high privileged) process allocates a ptp device file (like /dev/ptpX) and voluntarily goes to sleep. During this time if the underlying device is removed, it can cause an exploitable condition as the process wakes up to terminate and clean all attached files. The system crashes due to the cdev structure being invalid (as already freed) which is pointed to by the inode.",
  "id": "GHSA-hgvv-3627-37xx",
  "modified": "2022-05-24T17:17:28Z",
  "published": "2022-05-24T17:17:28Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10690"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10690"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html"
    },
    {
      "type": "WEB",
      "url": "https://security.netapp.com/advisory/ntap-20200608-0001"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/4419-1"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

cve-2020-10690

Vulnerability from cvelistv5

Published

2020-05-08 13:48

Modified

2024-08-04 11:06

Severity

6.5 (Medium) - cvssV3_1 - CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10690	x_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-20200608-0001/	x_refsource_CONFIRM
https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html	mailing-list, x_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html	mailing-list, x_refsource_MLIST
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html	vendor-advisory, x_refsource_SUSE
https://usn.ubuntu.com/4419-1/	vendor-advisory, x_refsource_UBUNTU

Impacted products

Vendor	Product
Red Hat	kernel

Show details on NVD website