PT-2024-10835 · Linux+2 · Linux Kernel+2

Published

2021-10-06

Updated

2025-01-24

CVE-2020-36788

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue has been resolved in the Linux kernel, specifically in the drm/nouveau component. The nouveau bo init() function is backed by ttm bo init() and returns its error code to the caller. When nouveau bo init() fails, ttm bo init() invokes a destructor to de-initialize and free the memory. However, when nouveau bo init() returns an error, the gem object has already been released and the memory freed by nouveau bo del ttm().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-02850

CVE-2020-36788

OPENSUSE-SU-2024_2185-1

OPENSUSE-SU-2024_2189-1

SUSE-SU-2024:2008-1

SUSE-SU-2024:2010-1

SUSE-SU-2024:2011-1

SUSE-SU-2024:2019-1

SUSE-SU-2024:2185-1

SUSE-SU-2024:2189-1

SUSE-SU-2024:2190-1

SUSE-SU-2025:0231-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2024-10835 · Linux+2 · Linux Kernel+2

CVE-2020-36788

Weakness Enumeration

Related Identifiers

Affected Products

References · 1485