PT-2020-6738 · Linux+9 · Linux Kernel+9

Syzbot

·

Published

2020-09-18

·

Updated

2022-10-25

·

CVE-2020-36385

CVSS v2.0

9.3

High

VectorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.10
Description The issue is related to a use-after-free vulnerability in the Linux kernel, specifically in the drivers/infiniband/core/ucma.c component. This vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. The vulnerability occurs because the ctx is reached via the ctx list in some ucma migrate id situations where ucma close is called.
Recommendations For Linux kernel versions prior to 5.10, update to version 5.10 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable ucma.c component to minimize the risk of exploitation. Avoid using the ucma migrate id function in situations where ucma close is called until the issue is resolved.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2021:4056
ALT-PU-2020-3536
ALT-PU-2020-3553
ALT-PU-2020-3571
ALT-PU-2021-1083
ALT-PU-2021-1105
ALT-PU-2021-1446
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
BDU:2022-05916
CESA-2021_4056
CESA-2021_4088
CESA-2021_4122
CESA-2021_4777
CVE-2020-36385
OESA-2021-1279
OPENSUSE-SU-2021:2184-1
OPENSUSE-SU-2021:2202-1
OPENSUSE-SU-2021:2427-1
OPENSUSE-SU-2021_2184-1
OPENSUSE-SU-2021_2202-1
OPENSUSE-SU-2021_2427-1
RHSA-2021:3987
RHSA-2021:4056
RHSA-2021:4088
RHSA-2021:4122
RHSA-2021:4597
RHSA-2021:4687
RHSA-2021:4692
RHSA-2021:4768
RHSA-2021:4770
RHSA-2021:4773
RHSA-2021:4774
RHSA-2021:4777
RHSA-2021:4779
RHSA-2021:4798
RHSA-2021:4859
RHSA-2021:4871
RHSA-2021:4875
RHSA-2021:4971
RHSA-2021:5035
RHSA-2021_4056
RHSA-2021_4088
RHSA-2021_4777
RHSA-2021_4779
RHSA-2022:0157
RHSA-2022_0157
RLSA-2021:4056
RLSA-2021:4088
SUSE-SU-2021:14849-1
SUSE-SU-2021:2184-1
SUSE-SU-2021:2202-1
SUSE-SU-2021:2303-1
SUSE-SU-2021:2325-1
SUSE-SU-2021:2406-1
SUSE-SU-2021:2407-1
SUSE-SU-2021:2416-1
SUSE-SU-2021:2421-1
SUSE-SU-2021:2422-1
SUSE-SU-2021:2426-1
SUSE-SU-2021:2427-1
SUSE-SU-2021:2451-1
SUSE-SU-2021:2538-1
SUSE-SU-2021:2542-1
SUSE-SU-2021:2560-1
SUSE-SU-2021:2577-1
SUSE-SU-2021:2584-1
SUSE-SU-2021:2643-1
SUSE-SU-2021_14849-1
USN-5136-1
USN-5137-1
USN-5137-2
USN-5343-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Rocky Linux
Suse
Ubuntu