PT-2020-5127 · Linux+7 · Linux Kernel+7

Published

2020-08-12

·

Updated

2022-04-28

·

CVE-2020-25212

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.8.3
Description The issue is related to a TOCTOU mismatch in the NFS client code, which could allow local attackers to corrupt memory or have other unspecified impacts. This is due to a size check being in the wrong location, specifically in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c. The vulnerability is also described as being related to an authentication check error in the Network File System (NFS) of Linux operating systems, which could allow an attacker to elevate their privileges or execute arbitrary code.
Recommendations For Linux kernel versions prior to 5.8.3, update to version 5.8.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the NFS client code to minimize the risk of exploitation.

Fix

Time Of Check To Time Of Use

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-367CWE-787

Related Identifiers

ALSA-2021:1578
ALT-PU-2020-2688
ALT-PU-2020-2770
ALT-PU-2020-3210
ALT-PU-2020-3553
ALT-PU-2021-1083
ALT-PU-2021-1105
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
BDU:2020-05723
CESA-2020_5437
CESA-2021_1578
CESA-2021_1739
CVE-2020-25212
DLA-2385-1
DLA-2420-1
DLA-2420-2
OPENSUSE-SU-2020:1586-1
OPENSUSE-SU-2020:1655-1
OPENSUSE-SU-2020:1682-1
OPENSUSE-SU-2020:1698-1
OPENSUSE-SU-2020:2112-1
OPENSUSE-SU-2020_1655-1
OPENSUSE-SU-2020_1682-1
OPENSUSE-SU-2020_1698-1
OPENSUSE-SU-2020_2112-1
OPENSUSE-SU-2021:0242-1
OPENSUSE-SU-2021_0242-1
RHSA-2020:4279
RHSA-2020:5437
RHSA-2020:5441
RHSA-2020_5437
RHSA-2020_5441
RHSA-2021:0526
RHSA-2021:0760
RHSA-2021:0878
RHSA-2021:1578
RHSA-2021:1739
RHSA-2021_1578
RHSA-2021_1739
SUSE-SU-2020:2879-1
SUSE-SU-2020:2904-1
SUSE-SU-2020:2905-1
SUSE-SU-2020:2906-1
SUSE-SU-2020:2907-1
SUSE-SU-2020:2908-1
SUSE-SU-2020:2981-1
SUSE-SU-2020:2999-1
SUSE-SU-2020:3014-1
SUSE-SU-2020:3178-1
SUSE-SU-2020:3180-1
SUSE-SU-2020:3181-1
SUSE-SU-2020:3186-1
SUSE-SU-2020:3187-1
SUSE-SU-2020:3188-1
SUSE-SU-2020:3190-1
SUSE-SU-2020:3204-1
SUSE-SU-2020:3210-1
SUSE-SU-2020:3219-1
SUSE-SU-2020:3222-1
SUSE-SU-2020:3225-1
SUSE-SU-2020:3230-1
SUSE-SU-2020:3281-1
SUSE-SU-2020:3484-1
SUSE-SU-2020:3491-1
SUSE-SU-2020:3501-1
SUSE-SU-2020:3503-1
SUSE-SU-2020:3532-1
SUSE-SU-2020:3544-1
SUSE-SU-2020_3181-1
SUSE-SU-2020_3230-1
USN-4525-1
USN-4527-1
USN-4578-1
USN-4752-1

Affected Products

Alt Linux
Almalinux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu