PT-2020-3141 · Linux+4 · Linux Kernel+4

Kyungtae Kim

·

Published

2020-06-18

·

Updated

2023-02-15

·

CVE-2020-15393

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions 4.4 through 5.7.6
Description The issue is related to a memory leak in the usbtest disconnect function. This function is part of the Linux kernel and is located in drivers/usb/misc/usbtest.c. The memory leak occurs when resources are not properly released after they are no longer needed. An attacker could potentially exploit this issue to cause a denial of service.
Recommendations For Linux kernel versions 4.4 through 5.7.6, consider updating to a version that includes a fix for the memory leak in the usbtest disconnect function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Leak

Missing Release of Resource after Effective Lifetime

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-401CWE-772

Related Identifiers

ALT-PU-2020-2264
ALT-PU-2020-2316
ALT-PU-2020-2362
ALT-PU-2020-2409
ALT-PU-2020-2432
ALT-PU-2020-2687
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
BDU:2020-03435
CVE-2020-15393
DLA-2323-1
DLA-2420-1
DLA-2420-2
MGASA-2020-0333
OPENSUSE-SU-2020:1062-1
OPENSUSE-SU-2020:1153-1
OPENSUSE-SU-2020_1062-1
OPENSUSE-SU-2020_1153-1
OPENSUSE-SU-2021:0242-1
OPENSUSE-SU-2021_0242-1
SUSE-SU-2020:2027-1
SUSE-SU-2020:2103-1
SUSE-SU-2020:2105-1
SUSE-SU-2020:2106-1
SUSE-SU-2020:2107-1
SUSE-SU-2020:2119-1
SUSE-SU-2020:2121-1
SUSE-SU-2020:2122-1
SUSE-SU-2020:2478-1
SUSE-SU-2020:2487-1
SUSE-SU-2022:2721-1
SUSE-SU-2022:2840-1
SUSE-SU-2023:0416-1
USN-4463-1
USN-4465-1
USN-4483-1
USN-4485-1

Affected Products

Alt Linux
Linuxmint
Linux Kernel
Suse
Ubuntu