PT-2020-5391 · Linux+6 · Linux Kernel+6

Adam Zabrocki

+1

·

Published

2020-04-01

·

Updated

2021-07-15

·

CVE-2020-12826

CVSS v3.1

5.3

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.6.5
Description A signal access-control issue was discovered in the Linux kernel. The issue is caused by an integer overflow in the exec id variable in include/linux/sched.h, which can interfere with a protection mechanism. This allows a child process to send an arbitrary signal to a parent process in a different security domain. The exploitation of this issue is limited by the time it takes for an integer overflow to occur and the lack of scenarios where signals to a parent process pose a significant threat.
Recommendations For Linux kernel versions prior to 5.6.5, update to version 5.6.5 or later to resolve the issue. As a temporary workaround, consider restricting signal handling between parent and child processes to minimize the risk of exploitation.

Exploit

Fix

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

ALSA-2020:4431
ALT-PU-2020-1913
ALT-PU-2020-1917
ALT-PU-2020-1928
ALT-PU-2020-1929
ALT-PU-2020-2153
ALT-PU-2020-2164
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
BDU:2021-00466
CESA-2020_4060
CESA-2020_4431
CESA-2020_4609
CVE-2020-12826
DLA-2241-1
DLA-2241-2
RHSA-2020:4060
RHSA-2020:4062
RHSA-2020:4431
RHSA-2020:4609
RHSA-2020_4060
RHSA-2020_4062
RHSA-2020_4431
RHSA-2020_4609
USN-4367-1
USN-4367-2
USN-4369-1
USN-4391-1

Affected Products

Alt Linux
Almalinux
Centos
Linuxmint
Linux Kernel
Red Hat
Ubuntu