Debian: DSA-4667-1 Critical: Linux Kernel Escalation and DoS Issues
debian
April 28, 2020
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service, or information leak
Summary
CVE-2020-2732
Paulo Bonzini discovered that the KVM implementation for Intel
processors did not properly handle instruction emulation for L2
guests when nested virtualization is enabled. This could allow
an L2 guest to cause privilege escalation, denial of service,
or information leaks in the L1 guest.
CVE-2020-8428
Al Viro discovered a use-after-free vulnerability in the VFS
layer. This allowed local users to cause a denial-of-service
(crash) or obtain sensitive information from kernel memory.
CVE-2020-10942
It was discovered that the vhost_net driver did not properly
validate the type of sockets set as back-ends. A local user
permitted to access /dev/vhost-net could use this to cause a stack
corruption via crafted system calls, resulting in denial of
service (crash) or possibly privilege escalation.
CVE-2020-11565
Entropy Moe reported that the shared memory filesystem (tmpfs) did
not correctly handle an "mpol" mount option specifying an...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: linux
CVE ID: CVE-2020-2732 CVE-2020-8428 CVE-2020-10942 CVE-2020-11565
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!