CVE-2019-20636HIGH
Description
In the Linux kernel before 5.4.12, drivers/input/input.c has out-of-bounds writes via a crafted keycode table, as demonstrated by input_set_keycode, aka CID-cb222aed03d7.
References
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.12
https://github.com/torvalds/linux/commit/cb222aed03d798fc074be55e59d9a112338ee784
https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html
https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html
Details
Source: MITRE
Published: 2020-04-08
Updated: 2020-06-10
Type: CWE-787
Risk Information
CVSS v2.0
Base Score: 7.2
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 3.9
Severity: HIGH
CVSS v3.0
Base Score: 6.7
Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 0.8
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 147318 | NewStart CGSL MAIN 6.02 : kernel Multiple Vulnerabilities (NS-SA-2021-0078) | Nessus | NewStart CGSL Local Security Checks | high |
| 145806 | CentOS 8 : kernel (CESA-2020:4431) | Nessus | CentOS Local Security Checks | high |
| 144831 | EulerOS Virtualization 3.0.2.6 : kernel (EulerOS-SA-2021-1056) | Nessus | Huawei Local Security Checks | critical |
| 144754 | RHEL 7 : kernel (RHSA-2021:0019) | Nessus | Red Hat Local Security Checks | high |
| 144554 | RHEL 7 : kernel (RHSA-2020:5656) | Nessus | Red Hat Local Security Checks | high |
| 144280 | RHEL 7 : kernel (RHSA-2020:5430) | Nessus | Red Hat Local Security Checks | high |
| 143086 | RHEL 7 : kernel-alt (RHSA-2020:2854) | Nessus | Red Hat Local Security Checks | high |
| 142430 | RHEL 8 : kernel (RHSA-2020:4431) | Nessus | Red Hat Local Security Checks | high |
| 142382 | RHEL 8 : kernel-rt (RHSA-2020:4609) | Nessus | Red Hat Local Security Checks | high |
| 141727 | Scientific Linux Security Update : kernel on SL7.x x86_64 (20201001) | Nessus | Scientific Linux Local Security Checks | high |
| 141619 | CentOS 7 : kernel (CESA-2020:4060) | Nessus | CentOS Local Security Checks | high |
| 141057 | RHEL 7 : kernel (RHSA-2020:4060) | Nessus | Red Hat Local Security Checks | high |
| 141026 | RHEL 7 : kernel-rt (RHSA-2020:4062) | Nessus | Red Hat Local Security Checks | high |
| 140917 | EulerOS 2.0 SP3 : kernel (EulerOS-SA-2020-2150) | Nessus | Huawei Local Security Checks | high |
| 137932 | EulerOS Virtualization 3.0.6.0 : kernel (EulerOS-SA-2020-1713) | Nessus | Huawei Local Security Checks | high |
| 137805 | EulerOS Virtualization for ARM 64 3.0.6.0 : kernel (EulerOS-SA-2020-1698) | Nessus | Huawei Local Security Checks | high |
| 137516 | EulerOS 2.0 SP2 : kernel (EulerOS-SA-2020-1674) | Nessus | Huawei Local Security Checks | critical |
| 137291 | Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5715) | Nessus | Oracle Linux Local Security Checks | critical |
| 137283 | Debian DLA-2241-2 : linux security update | Nessus | Debian Local Security Checks | high |
| 137217 | OracleVM 3.4 : Unbreakable / etc (OVMSA-2020-0020) (Stack Clash) | Nessus | OracleVM Local Security Checks | critical |
| 137173 | Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2020-5708) (Stack Clash) | Nessus | Oracle Linux Local Security Checks | critical |
| 137024 | EulerOS 2.0 SP5 : kernel (EulerOS-SA-2020-1606) | Nessus | Huawei Local Security Checks | high |
| 136239 | EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2020-1536) | Nessus | Huawei Local Security Checks | critical |
| 135741 | EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1508) | Nessus | Huawei Local Security Checks | high |