CVE-2020-11669Return of Wrong Status Code in Kernel

CWE-393Return of Wrong Status Code11 documents7 sources
Severity
5.5MEDIUMNVD
OSV6.7OSV4.4
EPSS
0.1%
top 76.44%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Linux KernelDebian LinuxOpensuse Leap+1 more
Timeline
PublishedApr 10
Latest updateMay 24

Description

An issue was discovered in the Linux kernel before 5.2 on the powerpc platform. arch/powerpc/kernel/idle_book3s.S does not have save/restore functionality for PNV_POWERSAVE_AMR, PNV_POWERSAVE_UAMOR, and PNV_POWERSAVE_AMOR, aka CID-53a712bae5dd.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

Debianlinux/linux_kernel< 5.2.6-1+3
Ubuntulinux/linux_kernel< 4.15.0-101.102
debiandebian/linux< linux 5.2.6-1 (bookworm)
NVDopensuse/leap15.1

Also affects: Enterprise Linux 7.0

Patches

Patch: lists.opensuse.orgPatch: git.kernel.orgPatch: github.com

🔴Vulnerability Details

4
GHSA
GHSA-j84w-6r3r-7jvc: An issue was discovered in the Linux kernel before 52022-05-24
OSV
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities2020-05-28
OSV
linux-gke-5.0, linux-oem-osp1 vulnerabilities2020-05-19
OSV
CVE-2020-11669: An issue was discovered in the Linux kernel before 52020-04-10

📋Vendor Advisories

4
Ubuntu
Linux kernel vulnerabilities2020-05-28
Ubuntu
Linux kernel vulnerabilities2020-05-19
Red Hat
kernel: powerpc: guest can cause DoS on POWER9 KVM hosts2020-04-10
Debian
CVE-2020-11669: linux - An issue was discovered in the Linux kernel before 5.2 on the powerpc platform. ...2020

💬Community

2
Bugzilla
CVE-2020-11669 kernel: powerpc: guest can cause DoS on POWER9 KVM hosts [fedora-all]2020-04-16
Bugzilla
CVE-2020-11669 kernel: powerpc: guest can cause DoS on POWER9 KVM hosts2020-04-16
CVE-2020-11669 — Return of Wrong Status Code in Kernel | cvebase