1. Home
  2. Vulnerabilities
  3. CVE-2020-29569

CVE-2020-29569

CVSS v3.1 8.8 (High)
88% Progress
CVSS v2.0 7.2 (High)
72% Progress
EPSS 0.04 % (15th)
0.04% Progress
Affected Products 7
Advisories 40
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly toggles between the states connect and disconnect. As a consequence, the block backend may re-use a pointer after it was freed. A misbehaving guest can trigger a dom0 crash by continuously connecting / disconnecting a block frontend. Privilege escalation and information leaks cannot be ruled out. This only affects systems with a Linux blkback.

Weaknesses
CWE-416
Use After Free
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2020-12-15 17:15:14
(3 years ago)
Updated Date
2023-01-19 15:53:51
(20 months ago)

Affected Products

Debian

Linux

Netapp

Xen

Configuration #1

AND
    CPE23 From Up To
OR  
  Xen 4.14.1 and prior versions cpe:2.3:o:xen:xen <= 4.14.1

Configuration #2

AND
    CPE23 From Up To
OR  
  Linux Kernel from 4.1.44 version and prior 4.2 version cpe:2.3:o:linux:linux_kernel >= 4.1.44 < 4.2
OR  
  Running on/with
  Linux Kernel from 4.4.80 version and prior 4.4.254 version cpe:2.3:o:linux:linux_kernel >= 4.4.80 < 4.4.254
OR  
  Running on/with
  Linux Kernel from 4.9.36 version and prior 4.9.249 version cpe:2.3:o:linux:linux_kernel >= 4.9.36 < 4.9.249
OR  
  Running on/with
  Linux Kernel from 4.11.9 version and prior 4.12 version cpe:2.3:o:linux:linux_kernel >= 4.11.9 < 4.12
OR  
  Running on/with
  Linux Kernel from 4.12 version and prior 4.14.213 version cpe:2.3:o:linux:linux_kernel >= 4.12 < 4.14.213
OR  
  Running on/with
  Linux Kernel from 4.15 version and prior 4.19.164 version cpe:2.3:o:linux:linux_kernel >= 4.15 < 4.19.164
OR  
  Running on/with
  Linux Kernel from 4.20 version and prior 5.4.86 version cpe:2.3:o:linux:linux_kernel >= 4.20 < 5.4.86
OR  
  Running on/with
  Linux Kernel from 5.5 version and prior 5.10.4 version cpe:2.3:o:linux:linux_kernel >= 5.5 < 5.10.4

Configuration #3

AND
    CPE23 From Up To
OR  
  Netapp Hci Compute Node Bios cpe:2.3:o:netapp:hci_compute_node_bios:-
OR  
  Running on/with
  Netapp Hci Compute Node cpe:2.3:h:netapp:hci_compute_node:-

Configuration #4

AND
    CPE23 From Up To
OR  
  Netapp Solidfire & Hci Management Node cpe:2.3:a:netapp:solidfire_\%26_hci_management_node:-
OR  
  Running on/with
  Netapp Solidfire & Hci Storage Node cpe:2.3:a:netapp:solidfire_\%26_hci_storage_node:-

Configuration #5

AND
    CPE23 From Up To
OR  
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0
OR  
  Running on/with
  Debian Linux 10.0 cpe:2.3:o:debian:debian_linux:10.0