CVE-2020-14386

2020-09-16 15:15:00 2020-11-02 22:15:00

A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity.

Vector

LOCAL

Complexity

LOW

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Linux Linux kernel 5.9.0 Rc3 * * (not an official CPE) Linux Linux kernel 5.9.0 Rc2 * * (not an official CPE) Linux Linux kernel 5.9.0 Rc1 * * (not an official CPE) Linux Linux kernel * * * * (not an official CPE)

Linux - Linux kernel

Advisory	Patch	Confirmed	Link
			https://lists.debian.org/debian-lts-announce/2020/09/msg...
			https://lists.debian.org/debian-lts-announce/2020/10/msg...
			https://lists.debian.org/debian-lts-announce/2020/10/msg...
			https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-143...
			https://git.kernel.org/pub/scm/linux/kernel/git/torvalds...
			http://packetstormsecurity.com/files/159565/Kernel-Live-...
			https://lists.fedoraproject.org/archives/list/package-an...
			http://lists.opensuse.org/opensuse-security-announce/202...
			https://seclists.org/oss-sec/2020/q3/146