PT-2020-2425 · Linux+7 · Linux Kernel+7
Longofo
+4
·
Published
2016-03-17
·
Updated
2021-06-14
·
CVE-2020-12114
CVSS v3.1
4.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions 4.4.x through 4.4.220
Linux kernel versions 4.9.x through 4.9.220
Linux kernel versions 4.14.x through 4.14.177
Linux kernel versions 4.19.x through 4.19.118
Linux kernel versions 5.x through 5.2
Description
A pivot root race condition in the Linux kernel's fs/namespace.c allows local users to cause a denial of service by corrupting a mountpoint reference counter, potentially leading to a system panic. This issue is related to synchronization errors when using shared resources.
Recommendations
For Linux kernel version 4.4.x, update to version 4.4.221 or later.
For Linux kernel version 4.9.x, update to version 4.9.221 or later.
For Linux kernel version 4.14.x, update to version 4.14.178 or later.
For Linux kernel version 4.19.x, update to version 4.19.119 or later.
For Linux kernel version 5.x, update to version 5.3 or later.
Fix
DoS
Race Condition
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu