PT-2020-5392 · Linux+6 · Linux Kernel+6

Prasad J Pandit

·

Published

2020-05-14

·

Updated

2022-11-14

·

CVE-2020-12888

CVSS v3.1

5.3

Medium

VectorAV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.6.13
Description The issue is related to the VFIO PCI driver in the Linux kernel, which mishandles attempts to access disabled memory space. This can be exploited to cause a denial of service.
Recommendations For Linux kernel versions through 5.6.13, update to a version that includes the fix for this issue to prevent exploitation.

Exploit

Fix

Improper Handling of Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-755

Related Identifiers

ALT-PU-2020-2031
ALT-PU-2020-2091
ALT-PU-2020-2153
ALT-PU-2020-2155
ALT-PU-2020-2158
ALT-PU-2020-2164
ALT-PU-2020-2825
ALT-PU-2020-2826
ALT-PU-2020-2858
ALT-PU-2020-2935
ALT-PU-2020-2936
ALT-PU-2020-3057
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1745
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
BDU:2021-00471
CESA-2020_2664
CESA-2020_3010
CESA-2020_3016
CVE-2020-12888
DLA-2385-1
DLA-2420-1
DLA-2420-2
OPENSUSE-SU-2020:0935-1
OPENSUSE-SU-2020:1153-1
OPENSUSE-SU-2020_0935-1
OPENSUSE-SU-2020_1153-1
OPENSUSE-SU-2021:0242-1
OPENSUSE-SU-2021_0242-1
RHSA-2020:2664
RHSA-2020:2665
RHSA-2020:2831
RHSA-2020:2832
RHSA-2020:2851
RHSA-2020:2854
RHSA-2020:3010
RHSA-2020:3016
RHSA-2020:3019
RHSA-2020:3041
RHSA-2020:3222
RHSA-2020:3230
RHSA-2020_2664
RHSA-2020_2665
RHSA-2020_3010
RHSA-2020_3016
SUSE-SU-2020:2027-1
SUSE-SU-2020:2103-1
SUSE-SU-2020:2105-1
SUSE-SU-2020:2106-1
SUSE-SU-2020:2107-1
SUSE-SU-2020:2119-1
SUSE-SU-2020:2121-1
SUSE-SU-2020:2122-1
SUSE-SU-2020:2156-1
SUSE-SU-2020:2478-1
SUSE-SU-2020:2487-1
USN-4525-1
USN-4526-1
USN-5361-1

Affected Products

Alt Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu