CVE-2020-10711: A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP…

medium5.9CVSS 3.1

AVNACHPRNUINSUCNINAH

A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allows a remote network user to crash the system kernel, resulting in a denial of service.

Affected

32 ranges· showing 25

Vendor	Product	Version range	Fixed in
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	linux	< linux 5.6.14-1 (bookworm)	linux 5.6.14-1 (bookworm)
linux	linux_kernel	< 5.7	5.7
linux	linux_kernel	>= 0 < 5.6.14-1	5.6.14-1
linux	linux_kernel	>= 0 < 5.6.14-1	5.6.14-1
linux	linux_kernel	>= 0 < 5.6.14-1	5.6.14-1
linux	linux_kernel	>= 0 < 5.6.14-1	5.6.14-1
linux	linux_kernel	>= 0 < 4.4.0-185.215	4.4.0-185.215
linux	linux_kernel	>= 0 < 4.15.0-109.110	4.15.0-109.110
linux	linux_kernel	>= 0 < 5.4.0-40.44	5.4.0-40.44
msrc	cbl_mariner_1.0_arm	—	—
msrc	cbl_mariner_1.0_x64	—	—
msrc	cm1_kernel_5.4.91-3_on_cbl_mariner_1.0	—	—
opensuse	leap	—	—
opensuse	leap	—	—
red_hat	kernel	—	—
redhat	3scale	—	—
redhat	enterprise_linux	—	—

CVSS provenance

nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

osv6.4MEDIUM