A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity.
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00021.html
http://packetstormsecurity.com/files/159565/Kernel-Live-Patch-Security-Notice-LSN-0072-1.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14386
https://lists.debian.org/debian-lts-announce/2020/09/msg00025.html
https://lists.debian.org/debian-lts-announce/2020/10/msg00032.html
https://lists.debian.org/debian-lts-announce/2020/10/msg00034.html
Source: MITRE
Published: 2020-09-16
Updated: 2020-11-02
Type: CWE-787
Base Score: 7.2
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 3.9
Severity: HIGH
Base Score: 7.8
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.8
Severity: HIGH
OR
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.9.0:rc1:*:*:*:*:*:*
ID | Name | Product | Family | Severity |
---|---|---|---|---|
146282 | openSUSE Security Update : RT kernel (openSUSE-2021-242) | Nessus | SuSE Local Security Checks | high |
145986 | CentOS 8 : kernel (CESA-2020:4286) | Nessus | CentOS Local Security Checks | high |
145201 | EulerOS 2.0 SP3 : kernel (EulerOS-SA-2021-1079) | Nessus | Huawei Local Security Checks | high |
144731 | EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2021-1039) | Nessus | Huawei Local Security Checks | high |
144244 | EulerOS 2.0 SP5 : kernel (EulerOS-SA-2020-2549) | Nessus | Huawei Local Security Checks | high |
143844 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3225-1) | Nessus | SuSE Local Security Checks | high |
143840 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2623-1) | Nessus | SuSE Local Security Checks | high |
143784 | SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3014-1) | Nessus | SuSE Local Security Checks | high |
143767 | SUSE SLES15 Security Update : kernel (SUSE-SU-2020:2610-1) | Nessus | SuSE Local Security Checks | high |
143236 | RHEL 8 : kernel (RHSA-2020:5199) | Nessus | Red Hat Local Security Checks | high |
142978 | Amazon Linux AMI : kernel (ALAS-2020-1446) | Nessus | Amazon Linux Local Security Checks | high |
142240 | EulerOS 2.0 SP2 : kernel (EulerOS-SA-2020-2353) | Nessus | Huawei Local Security Checks | high |
142176 | Debian DLA-2420-2 : linux regression update | Nessus | Debian Local Security Checks | high |
142148 | EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-2311) | Nessus | Huawei Local Security Checks | high |
141777 | Oracle Linux 8 : kernel (ELSA-2020-4286) | Nessus | Oracle Linux Local Security Checks | high |
141606 | RHEL 8 : kernel (RHSA-2020:4286) | Nessus | Red Hat Local Security Checks | high |
141603 | RHEL 8 : kernel-rt (RHSA-2020:4289) | Nessus | Red Hat Local Security Checks | high |
141580 | RHEL 8 : kernel (RHSA-2020:4287) | Nessus | Red Hat Local Security Checks | high |
141396 | Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5885) | Nessus | Oracle Linux Local Security Checks | high |
141395 | Oracle Linux 8 : Unbreakable Enterprise kernel (ELSA-2020-5884) | Nessus | Oracle Linux Local Security Checks | high |
141388 | openSUSE Security Update : the Linux Kernel (openSUSE-2020-1655) | Nessus | SuSE Local Security Checks | high |
141332 | EulerOS 2.0 SP9 : kernel (EulerOS-SA-2020-2166) | Nessus | Huawei Local Security Checks | high |
141329 | EulerOS : kernel (EulerOS-SA-2020-2176) | Nessus | Huawei Local Security Checks | high |
140933 | Debian DLA-2385-1 : linux-4.19 security update | Nessus | Debian Local Security Checks | high |
140580 | Photon OS 3.0: Linux PHSA-2020-3.0-0140 | Nessus | PhotonOS Local Security Checks | high |
140536 | Photon OS 2.0: Linux PHSA-2020-2.0-0282 | Nessus | PhotonOS Local Security Checks | high |
140508 | Fedora 32 : kernel (2020-b858b48b23) | Nessus | Fedora Local Security Checks | high |
140495 | Photon OS 1.0: Linux PHSA-2020-1.0-0323 | Nessus | PhotonOS Local Security Checks | high |
140480 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2582-1) | Nessus | SuSE Local Security Checks | high |
140478 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2578-1) | Nessus | SuSE Local Security Checks | high |
140477 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2577-1) | Nessus | SuSE Local Security Checks | high |
140476 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2576-1) | Nessus | SuSE Local Security Checks | high |
140475 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2575-1) | Nessus | SuSE Local Security Checks | high |
140450 | Ubuntu 16.04 LTS / 18.04 LTS / 20.04 : Linux kernel vulnerability (USN-4489-1) | Nessus | Ubuntu Local Security Checks | high |
140449 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2574-1) | Nessus | SuSE Local Security Checks | high |
140443 | openSUSE Security Update : the Linux Kernel (openSUSE-2020-1382) | Nessus | SuSE Local Security Checks | high |
140442 | openSUSE Security Update : the Linux Kernel (openSUSE-2020-1379) | Nessus | SuSE Local Security Checks | high |
140210 | Amazon Linux AMI : kernel (ALAS-2020-1430) | Nessus | Amazon Linux Local Security Checks | high |
140209 | Amazon Linux 2 : kernel (ALAS-2020-1488) | Nessus | Amazon Linux Local Security Checks | high |