PT-2020-1635 · Linux+3 · Linux Kernel+3

Al Viro

·

Published

2020-01-26

·

Updated

2021-05-28

·

CVE-2020-8428

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.5
Description The issue is related to a use-after-free in the fs/namei.c file of the Linux kernel. This can be exploited by local users to cause a denial of service or possibly obtain sensitive information from kernel memory. One potential attack vector involves an open system call for a UNIX domain socket, specifically when the socket is being moved to a new parent directory and its old parent directory is being removed.
Recommendations For Linux kernel versions prior to 5.5, update to version 5.5 or later to resolve the issue. As a temporary workaround, consider restricting access to UNIX domain sockets to minimize the risk of exploitation. Avoid using the open system call for UNIX domain sockets when moving them to new parent directories, especially if the old parent directory is being removed, until the issue is resolved.

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2020-1145
ALT-PU-2020-1251
ALT-PU-2020-1421
ALT-PU-2020-1450
ALT-PU-2020-1714
ALT-PU-2020-2164
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
BDU:2020-00850
CVE-2020-8428
DLA-2242-1
DSA-4667-1
DSA-4698-1
LSN-0065-1
MGASA-2020-0073
MGASA-2020-0089
OPENSUSE-SU-2020:0336-1
OPENSUSE-SU-2020_0336-1
SUSE-SU-2020:0511-1
SUSE-SU-2020:0558-1
SUSE-SU-2020:0559-1
SUSE-SU-2020:0560-1
SUSE-SU-2020:0580-1
SUSE-SU-2020:0584-1
SUSE-SU-2020:0613-1
SUSE-SU-2020:0649-1
SUSE-SU-2020:0667-1
SUSE-SU-2020:1663-1
SUSE-SU-2020_1663-1
USN-4318-1
USN-4319-1
USN-4320-1
USN-4324-1
USN-4325-1

Affected Products

Alt Linux
Linux Kernel
Suse
Ubuntu