CVE-2020-10711

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allows a remote network user to crash the system kernel, resulting in a denial of service.

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10711

https://www.openwall.com/lists/oss-security/2020/05/12/2

https://security.netapp.com/advisory/ntap-20200608-0001/

https://lists.debian.org/debian-lts-announce/2020/06/msg00012.html

https://www.debian.org/security/2020/dsa-4699

https://www.debian.org/security/2020/dsa-4698

http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.html

https://usn.ubuntu.com/4413-1/

https://usn.ubuntu.com/4411-1/

https://usn.ubuntu.com/4412-1/

https://usn.ubuntu.com/4419-1/

https://usn.ubuntu.com/4414-1/

Details

Source: MITRE

Published: 2020-05-22

Updated: 2021-08-04

Type: CWE-476

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 5.9

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 2.2

Severity: MEDIUM

Tenable Plugins

View all (64 total)

IDNameProductFamilySeverity
146282openSUSE Security Update : RT kernel (openSUSE-2021-242)NessusSuSE Local Security Checks
high
145913CentOS 8 : kernel (CESA-2020:2102)NessusCentOS Local Security Checks
high
144837OracleVM 3.4 : Unbreakable / etc (OVMSA-2021-0001)NessusOracleVM Local Security Checks
high
144802Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2021-9002)NessusOracle Linux Local Security Checks
high
143971NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel Multiple Vulnerabilities (NS-SA-2020-0108)NessusNewStart CGSL Local Security Checks
critical
143889NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2020-0073)NessusNewStart CGSL Local Security Checks
high
142576EulerOS Virtualization 3.0.6.6 : kernel (EulerOS-SA-2020-2443)NessusHuawei Local Security Checks
high
140378SUSE SLES15 Security Update : kernel (SUSE-SU-2020:2487-1)NessusSuSE Local Security Checks
medium
140328EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2020-1958)NessusHuawei Local Security Checks
high
140141EulerOS 2.0 SP5 : kernel (EulerOS-SA-2020-1920)NessusHuawei Local Security Checks
medium
139408SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2152-1)NessusSuSE Local Security Checks
high
139364SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2134-1)NessusSuSE Local Security Checks
high
139308SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2105-1)NessusSuSE Local Security Checks
medium
138766NewStart CGSL MAIN 6.01 : kernel Multiple Vulnerabilities (NS-SA-2020-0030)NessusNewStart CGSL Local Security Checks
critical
138727openSUSE Security Update : the Linux Kernel (openSUSE-2020-935)NessusSuSE Local Security Checks
high
138679openSUSE Security Update : the Linux Kernel (openSUSE-2020-801)NessusSuSE Local Security Checks
medium
138631Amazon Linux AMI : kernel (ALAS-2020-1382)NessusAmazon Linux Local Security Checks
high
138488Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2020-5756)NessusOracle Linux Local Security Checks
high
138418Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5755)NessusOracle Linux Local Security Checks
high
138325Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4419-1)NessusUbuntu Local Security Checks
medium
138272SUSE SLES15 Security Update : kernel (SUSE-SU-2020:1663-1)NessusSuSE Local Security Checks
critical
138139Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4414-1)NessusUbuntu Local Security Checks
high
138138Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4413-1)NessusUbuntu Local Security Checks
medium
138137Ubuntu 18.04 LTS / 19.10 : Linux kernel vulnerabilities (USN-4412-1)NessusUbuntu Local Security Checks
medium
138136Ubuntu 20.04 : Linux kernel vulnerabilities (USN-4411-1)NessusUbuntu Local Security Checks
medium
137805EulerOS Virtualization for ARM 64 3.0.6.0 : kernel (EulerOS-SA-2020-1698)NessusHuawei Local Security Checks
medium
137617SUSE SLES12 Security Update : kernel (SUSE-SU-2020:1605-1)NessusSuSE Local Security Checks
medium
137616SUSE SLES12 Security Update : kernel (SUSE-SU-2020:1603-1)NessusSuSE Local Security Checks
medium
137615SUSE SLES12 Security Update : kernel (SUSE-SU-2020:1602-1)NessusSuSE Local Security Checks
medium
137613SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:1599-1)NessusSuSE Local Security Checks
medium
137608SUSE SLES12 Security Update : kernel (SUSE-SU-2020:1587-1)NessusSuSE Local Security Checks
medium
137391Slackware 14.2 : Slackware 14.2 kernel (SSA:2020-163-01)NessusSlackware Local Security Checks
medium
137363RHEL 7 : kernel (RHSA-2020:2522)NessusRed Hat Local Security Checks
high
137341Debian DSA-4699-1 : linux - security updateNessusDebian Local Security Checks
medium
137340Debian DSA-4698-1 : linux - security updateNessusDebian Local Security Checks
medium
137339Debian DLA-2242-1 : linux-4.9 security updateNessusDebian Local Security Checks
medium
137275RHEL 8 : kernel (RHSA-2020:2429)NessusRed Hat Local Security Checks
high
137062RHEL 7 : kernel (RHSA-2020:2277)NessusRed Hat Local Security Checks
high
137061RHEL 7 : kernel (RHSA-2020:2285)NessusRed Hat Local Security Checks
high
137060RHEL 7 : kernel (RHSA-2020:2289)NessusRed Hat Local Security Checks
high
136870EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1592)NessusHuawei Local Security Checks
high
136804Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2020-037)NessusVirtuozzo Local Security Checks
high
136777CentOS 6 : kernel (CESA-2020:2103)NessusCentOS Local Security Checks
medium
136737RHEL 6 : kernel-rt (RHSA-2020:2242)NessusRed Hat Local Security Checks
high
136725Fedora 31 : kernel (2020-c6b9fff7f8)NessusFedora Local Security Checks
medium
136722Fedora 30 : kernel (2020-5a69decc0c)NessusFedora Local Security Checks
medium
136717RHEL 8 : kernel (RHSA-2020:2199)NessusRed Hat Local Security Checks
high
136714RHEL 7 : kernel (RHSA-2020:2214)NessusRed Hat Local Security Checks
high
136690Scientific Linux Security Update : kernel on SL7.x x86_64 (20200512)NessusScientific Linux Local Security Checks
high
136646Oracle Linux 8 : kernel (ELSA-2020-2102)NessusOracle Linux Local Security Checks
high
136645Oracle Linux 7 : kernel (ELSA-2020-2082)NessusOracle Linux Local Security Checks
high
136627Amazon Linux AMI : kernel (ALAS-2020-1366)NessusAmazon Linux Local Security Checks
high
136611RHEL 8 : kernel-rt (RHSA-2020:2171)NessusRed Hat Local Security Checks
medium
136603Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20200512)NessusScientific Linux Local Security Checks
medium
136602Oracle Linux 6 : kernel (ELSA-2020-2103)NessusOracle Linux Local Security Checks
high
136579Photon OS 3.0: Linux PHSA-2020-3.0-0089NessusPhotonOS Local Security Checks
medium
136570Photon OS 2.0: Linux PHSA-2020-2.0-0242NessusPhotonOS Local Security Checks
medium
136550Photon OS 1.0: Linux PHSA-2020-1.0-0293NessusPhotonOS Local Security Checks
medium
136530Amazon Linux 2 : kernel (ALAS-2020-1425)NessusAmazon Linux Local Security Checks
high
136526RHEL 8 : kernel (RHSA-2020:2102)NessusRed Hat Local Security Checks
high
136525RHEL 7 : kernel-rt (RHSA-2020:2085)NessusRed Hat Local Security Checks
high
136523RHEL 6 : kernel (RHSA-2020:2103)NessusRed Hat Local Security Checks
medium
136518RHEL 7 : kernel (RHSA-2020:2082)NessusRed Hat Local Security Checks
high
136496RHEL 7 : kernel-alt (RHSA-2020:2104)NessusRed Hat Local Security Checks
high