PT-2020-5487 · Linux+8 · Linux Kernel+8

Published

2020-10-29

Updated

2023-04-02

CVE-2020-12363

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Intel Graphics Drivers versions prior to 26.20.100.7212 Linux kernel versions prior to 5.5

Description The issue is related to improper input validation in some Intel Graphics Drivers, which may allow a privileged user to potentially enable a denial of service via local access. This could lead to a disruption in service.

Recommendations For Intel Graphics Drivers versions prior to 26.20.100.7212, update to version 26.20.100.7212 or later to resolve the issue. For Linux kernel versions prior to 5.5, update to version 5.5 or later to resolve the issue. As a temporary workaround, consider restricting local access to minimize the risk of exploitation.

Exploit

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALSA-2021:1578

BDU:2021-00822

CESA-2021_1578

CESA-2021_1620

CESA-2021_1739

CESA-2021_2314

CVE-2020-12363

DLA-3380-1

OPENSUSE-SU-2021:0393-1

OPENSUSE-SU-2021:0407-1

OPENSUSE-SU-2021_0393-1

OPENSUSE-SU-2021_0407-1

RHSA-2021:1578

RHSA-2021:1620

RHSA-2021:1739

RHSA-2021:2314

RHSA-2021:2316

RHSA-2021_1578

RHSA-2021_1620

RHSA-2021_1739

RHSA-2021_2314

RHSA-2021_2316

RLSA-2021:1620

SUSE-SU-2021:0694-1

SUSE-SU-2021:0735-1

SUSE-SU-2021:0738-1

SUSE-SU-2021:0741-1

Affected Products

Almalinux

Astra Linux

Centos

Debian

Intel Graphics Drivers

Linux Kernel

Red Hat

Rocky Linux

Suse

PT-2020-5487 · Linux+8 · Linux Kernel+8

CVE-2020-12363

Weakness Enumeration

Related Identifiers

Affected Products

References · 197