CVE-2020-29660 — Use After Free in Linux

CWE-416 — Use After Free CWE-667 — Improper Locking23 documents9 sources

Severity

4.4MEDIUMNVD

OSV7.8OSV5.4OSV4.1

EPSS

0.1%

top 78.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Debian Linux +3 more

Timeline

PublishedDec 9

Latest updateMar 14

Description

A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.8 | Impact: 3.6

Affected Packages6 packages

▶Debianlinux/linux_kernel< 5.9.15-1+3

▶Ubuntulinux/linux_kernel< 4.4.0-203.235+6

▶NVDlinux/linux_kernel5.9.13

▶debiandebian/linux< linux 5.9.15-1 (bookworm)

▶msrcmsrc/cm1_kernel_5.4.91-1_on_cbl_mariner_1.0

Also affects: Debian Linux 10.0, 9.0, Fedora 32, 33

Patches

Patch: www.openwall.com ↗Patch: git.kernel.org ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-6v44-4w2g-hxp9: A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5↗2022-05-24

▶

OSV

Kernel Live Patch Security Notice↗2021-11-11

▶

OSV

linux vulnerabilities↗2021-11-09

▶

OSV

CVE-2020-29660: In several functions of tty_io↗2021-10-01

▶

OSV

linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities↗2021-02-25

▶

📋Vendor Advisories

CISA ICS

Siemens SIMATIC↗2024-03-14

▶

Ubuntu

Kernel Live Patch Security Notice↗2021-11-11

▶

Ubuntu

Linux kernel vulnerabilities↗2021-11-09

▶

Android

CVE-2020-29660: TTY↗2021-10-01

▶

Ubuntu

Linux kernel vulnerabilities↗2021-02-25

▶