PT-2020-6177 · Linux+8 · Linux+8

Andrew Donnellan

·

Published

2020-10-06

·

Updated

2023-10-05

·

CVE-2020-27777

CVSS v2.0

7.2

High

VectorAV:L/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux (affected versions not specified)
Description A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. This issue allows a local user to increase their privileges to that of a running kernel on a locked down guest system running on top of PowerVM or KVM hypervisors. The flaw is related to incorrect memory access handling, which can be exploited to gain access to confidential data, disrupt data integrity, and cause a denial of service.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

ALSA-2021:4356
ALT-PU-2020-3536
ALT-PU-2020-3553
ALT-PU-2020-3571
ALT-PU-2021-1083
ALT-PU-2021-1105
ALT-PU-2021-1446
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
BDU:2021-03443
CESA-2021_3327
CESA-2021_4356
CVE-2020-27777
DLA-2483-1
OESA-2021-1003
OPENSUSE-SU-2020:2161-1
OPENSUSE-SU-2020:2193-1
OPENSUSE-SU-2020:2260-1
OPENSUSE-SU-2020_2161-1
OPENSUSE-SU-2020_2193-1
OPENSUSE-SU-2020_2260-1
OPENSUSE-SU-2021:0060-1
OPENSUSE-SU-2021:0075-1
OPENSUSE-SU-2021:0242-1
OPENSUSE-SU-2021_0060-1
OPENSUSE-SU-2021_0075-1
OPENSUSE-SU-2021_0242-1
RHSA-2021:3327
RHSA-2021:4356
RHSA-2021_3327
RHSA-2021_4356
SUSE-SU-2020:3713-1
SUSE-SU-2020:3714-1
SUSE-SU-2020:3715-1
SUSE-SU-2020:3717-1
SUSE-SU-2020:3718-1
SUSE-SU-2020:3748-1
SUSE-SU-2020:3764-1
SUSE-SU-2020:3766-1
SUSE-SU-2020:3798-1
SUSE-SU-2021:0094-1
SUSE-SU-2021:0095-1
SUSE-SU-2021:0097-1
SUSE-SU-2021:0098-1
SUSE-SU-2021:0108-1
SUSE-SU-2021:0117-1
SUSE-SU-2021:0118-1
SUSE-SU-2021:0133-1
SUSE-SU-2021:0434-1
SUSE-SU-2021:0437-1
SUSE-SU-2021:0438-1
SUSE-SU-2021:0452-1
SUSE-SU-2021:14630-1
SUSE-SU-2021_14630-1
USN-4679-1
USN-4680-1
USN-4708-1
USN-4751-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linux
Linuxmint
Red Hat
Suse
Ubuntu