CVE-2020-12771

MEDIUM
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails.

References

https://lkml.org/lkml/2020/4/26/87

https://security.netapp.com/advisory/ntap-20200608-0001/

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00071.html

http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00009.html

https://lists.debian.org/debian-lts-announce/2020/08/msg00019.html

https://usn.ubuntu.com/4463-1/

https://usn.ubuntu.com/4465-1/

https://usn.ubuntu.com/4483-1/

https://usn.ubuntu.com/4462-1/

https://usn.ubuntu.com/4485-1/

https://lists.debian.org/debian-lts-announce/2020/10/msg00034.html

https://lists.debian.org/debian-lts-announce/2020/10/msg00032.html

https://www.oracle.com/security-alerts/cpuApr2021.html

Details

Source: MITRE

Published: 2020-05-09

Updated: 2021-06-14

Type: CWE-20

Risk Information

CVSS v2

Base Score: 4.9

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 3.9

Severity: MEDIUM

CVSS v3

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 1.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 5.6.11 (inclusive)

Tenable Plugins

View all (28 total)

IDNameProductFamilySeverity
146282openSUSE Security Update : RT kernel (openSUSE-2021-242)NessusSuSE Local Security Checks
high
142176Debian DLA-2420-2 : linux regression updateNessusDebian Local Security Checks
high
141789Slackware 14.2 : Slackware 14.2 kernel (SSA:2020-295-01)NessusSlackware Local Security Checks
high
141445Photon OS 2.0: Linux PHSA-2020-2.0-0288NessusPhotonOS Local Security Checks
high
140588Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2020-5848)NessusOracle Linux Local Security Checks
medium
140499Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5845)NessusOracle Linux Local Security Checks
critical
140378SUSE SLES15 Security Update : kernel (SUSE-SU-2020:2487-1)NessusSuSE Local Security Checks
medium
140328EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2020-1958)NessusHuawei Local Security Checks
high
140183Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4485-1)NessusUbuntu Local Security Checks
high
140181Ubuntu 18.04 LTS / 20.04 : Linux kernel vulnerabilities (USN-4483-1)NessusUbuntu Local Security Checks
high
139693Ubuntu 18.04 LTS : linux kernel vulnerabilities (USN-4465-1)NessusUbuntu Local Security Checks
high
139662Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4463-1)NessusUbuntu Local Security Checks
medium
139661Ubuntu 18.04 LTS : Linux kernel vulnerability (USN-4462-1)NessusUbuntu Local Security Checks
medium
139551Debian DLA-2323-1 : linux-4.19 new packageNessusDebian Local Security Checks
critical
139408SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2152-1)NessusSuSE Local Security Checks
high
139401openSUSE Security Update : the Linux Kernel (openSUSE-2020-1153)NessusSuSE Local Security Checks
critical
139364SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2134-1)NessusSuSE Local Security Checks
high
139363SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2122-1)NessusSuSE Local Security Checks
critical
139362SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2121-1)NessusSuSE Local Security Checks
critical
139361SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2119-1)NessusSuSE Local Security Checks
critical
139310SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2107-1)NessusSuSE Local Security Checks
critical
139309SUSE SLES15 Security Update : kernel (SUSE-SU-2020:2106-1)NessusSuSE Local Security Checks
critical
139308SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2105-1)NessusSuSE Local Security Checks
medium
138986openSUSE Security Update : the Linux Kernel (openSUSE-2020-1062)NessusSuSE Local Security Checks
medium
138854Amazon Linux 2 : kernel (ALAS-2020-1465)NessusAmazon Linux Local Security Checks
high
138643Amazon Linux AMI : kernel (ALAS-2020-1401)NessusAmazon Linux Local Security Checks
high
137805EulerOS Virtualization for ARM 64 3.0.6.0 : kernel (EulerOS-SA-2020-1698)NessusHuawei Local Security Checks
medium
136870EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1592)NessusHuawei Local Security Checks
high