PT-2020-5869 · Linux+5 · Linux Kernel+5

Butt3Rflyh4Ck

·

Published

2020-05-07

·

Updated

2025-09-29

·

CVE-2020-27786

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.7-rc6
Description A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of execution to change and possibly allow for memory corruption or privilege escalation. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Recommendations For Linux kernel versions prior to 5.7-rc6, update to a version that includes the fix for this issue to prevent exploitation. As a temporary workaround, consider restricting access to midi devices to minimize the risk of exploitation. Avoid using the ioctl command on midi devices until the issue is resolved.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2021:1578
ALSA-2021_1578
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2020-2003
ALT-PU-2020-2030
ALT-PU-2020-2031
ALT-PU-2020-2091
ALT-PU-2020-2149
ALT-PU-2020-2153
ALT-PU-2020-2155
ALT-PU-2020-2158
ALT-PU-2020-2162
ALT-PU-2020-2164
ALT-PU-2020-2410
ALT-PU-2020-2433
BDU:2021-01920
CESA-2021_1578
CESA-2021_1739
CVE-2020-27786
ELSA-2021-1578
ELSA-2021-9030
OESA-2021-1086
OESA-2021-1087
OPENSUSE-SU-2021:0060-1
OPENSUSE-SU-2021:0075-1
OPENSUSE-SU-2021:0242-1
OPENSUSE-SU-2021_0060-1
OPENSUSE-SU-2021_0075-1
OPENSUSE-SU-2021_0242-1
RHSA-2021:1578
RHSA-2021:1739
RHSA-2021_1578
RHSA-2021_1739
SUSE-SU-2020:3764-1
SUSE-SU-2020:3766-1
SUSE-SU-2020:3798-1
SUSE-SU-2020_3764-1
SUSE-SU-2020_3798-1
SUSE-SU-2021:0096-1
SUSE-SU-2021:0097-1
SUSE-SU-2021:0098-1
SUSE-SU-2021:0117-1
SUSE-SU-2021:0118-1
SUSE-SU-2021:0133-1
SUSE-SU-2021:0434-1
SUSE-SU-2021:0437-1
SUSE-SU-2021:0438-1
SUSE-SU-2021:0452-1
SUSE-SU-2021:0808-1
SUSE-SU-2021:0809-1
SUSE-SU-2021:0818-1
SUSE-SU-2021:0823-1
SUSE-SU-2021:0826-1
SUSE-SU-2021:0835-1
SUSE-SU-2021:0853-1
SUSE-SU-2021:0859-1
SUSE-SU-2021:0868-1
SUSE-SU-2021:0870-1
SUSE-SU-2021:14630-1
SUSE-SU-2021_0096-1
SUSE-SU-2021_0097-1
SUSE-SU-2021_0098-1
SUSE-SU-2021_0117-1
SUSE-SU-2021_0118-1
SUSE-SU-2021_0133-1
SUSE-SU-2021_0434-1
SUSE-SU-2021_0437-1
SUSE-SU-2021_0438-1
SUSE-SU-2021_0452-1
SUSE-SU-2021_0809-1
SUSE-SU-2021_0818-1
SUSE-SU-2021_0835-1
SUSE-SU-2021_0853-1
SUSE-SU-2021_0859-1
SUSE-SU-2021_0868-1
SUSE-SU-2021_0870-1
SUSE-SU-2021_14630-1

Affected Products

Alt Linux
Almalinux
Centos
Linux Kernel
Red Hat
Suse