PT-2020-16802 · Linux+5 · Linux Kernel+5

Butt3Rflyh4Ck

Published

2020-11-11

Updated

2023-07-28

CVE-2020-27815

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description A flaw was found in the JFS filesystem code, allowing a local attacker with the ability to set extended attributes to panic the system, causing memory corruption or escalating privileges. The highest threat from this issue is to confidentiality, integrity, as well as system availability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-787

Related Identifiers

ALT-PU-2020-3256

AZL-31148

AZL-34856

CVE-2020-27815

DLA-2557-1

DLA-2586-1

DSA-4843-1

OESA-2021-1003

OPENSUSE-SU-2021:0532-1

OPENSUSE-SU-2021:0758-1

OPENSUSE-SU-2021:1975-1

OPENSUSE-SU-2021:1977-1

OPENSUSE-SU-2021_0532-1

OPENSUSE-SU-2021_0758-1

OPENSUSE-SU-2021_1975-1

OPENSUSE-SU-2021_1977-1

SUSE-SU-2021:1175-1

SUSE-SU-2021:1176-1

SUSE-SU-2021:1177-1

SUSE-SU-2021:1210-1

SUSE-SU-2021:1211-1

SUSE-SU-2021:1238-1

SUSE-SU-2021:1573-1

SUSE-SU-2021:1596-1

SUSE-SU-2021:1624-1

SUSE-SU-2021:1625-1

SUSE-SU-2021:1975-1

SUSE-SU-2021:1977-1

USN-4748-1

USN-4749-1

USN-4750-1

USN-4751-1

USN-4752-1

Affected Products

Alt Linux

Astra Linux

Linux Kernel

Linuxmint

Suse

Ubuntu

PT-2020-16802 · Linux+5 · Linux Kernel+5

CVE-2020-27815

Weakness Enumeration

Related Identifiers

Affected Products

References · 543