CVE-2020-15437

CVSS v3.1 4.4 (Medium)

CVSS v2.0 4.9 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 23

The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized.

Weaknesses

CWE-476: NULL Pointer Dereference

CVE Status: PUBLISHED
CNA: openEuler
Published Date: 2020-11-23 21:15:11
(3 years ago)
Updated Date: 2020-12-02 19:24:52
(3 years ago)

Affected Products

Linux

Linux Kernel

Configuration #1

		CPE23	From	Up To
	Linux Kernel prior 5.8 version	cpe:2.3:o:linux:linux_kernel		< 5.8