CVE-2020-29661

CVSS v3.1 7.8 (High)

CVSS v2.0 7.2 (High)

EPSS 0.05 % (17^th)

Affected Products 18

Advisories 42

A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.

Weaknesses

CWE-416: Use After Free
CWE-667: Improper Locking

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2020-12-09 17:15:31
(3 years ago)
Updated Date: 2023-11-07 03:21:33
(10 months ago)

Affected Products

Netapp

Oracle

Tekelec Platform Distribution

Configuration #1

	CPE23	From	Up To
Linux Kernel from 2.6.26 version and prior 4.4.248 version	cpe:2.3:o:linux:linux_kernel	>= 2.6.26	< 4.4.248
Linux Kernel from 4.5 version and prior 4.9.248 version	cpe:2.3:o:linux:linux_kernel	>= 4.5	< 4.9.248
Linux Kernel from 4.10 version and prior 4.14.212 version	cpe:2.3:o:linux:linux_kernel	>= 4.10	< 4.14.212
Linux Kernel from 4.15 version and prior 4.19.163 version	cpe:2.3:o:linux:linux_kernel	>= 4.15	< 4.19.163
Linux Kernel from 4.20 version and prior 5.4.83 version	cpe:2.3:o:linux:linux_kernel	>= 4.20	< 5.4.83
Linux Kernel from 5.5 version and prior 5.9.14 version	cpe:2.3:o:linux:linux_kernel	>= 5.5	< 5.9.14

Configuration #2

		CPE23	From	Up To
	Fedoraproject Fedora 32	cpe:2.3:o:fedoraproject:fedora:32
	Fedoraproject Fedora 33	cpe:2.3:o:fedoraproject:fedora:33

Configuration #3

		CPE23	From	Up To
	Debian Linux 9.0	cpe:2.3:o:debian:debian_linux:9.0
	Debian Linux 10.0	cpe:2.3:o:debian:debian_linux:10.0

Configuration #4

		CPE23	From	Up To
	Netapp Active Iq Unified Manager for Vmware Vsphere	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere

Configuration #5

		CPE23	From	Up To
	Broadcom Fabric Operating System	cpe:2.3:o:broadcom:fabric_operating_system:-

Configuration #6

AND

		CPE23
OR
	Netapp Solidfire Baseboard Management Controller Firmware	cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-
OR
	Running on/with
	Netapp Solidfire Baseboard Management Controller	cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-

Configuration #7

AND

		CPE23
OR
	Netapp H410c Firmware	cpe:2.3:o:netapp:h410c_firmware:-
OR
	Running on/with
	Netapp H410c	cpe:2.3:h:netapp:h410c:-

Configuration #8

AND

		CPE23
OR
	Netapp A700s Firmware	cpe:2.3:o:netapp:a700s_firmware:-
OR
	Running on/with
	Netapp A700s	cpe:2.3:h:netapp:a700s:-

Configuration #9

AND

		CPE23
OR
	Netapp 8300 Firmware	cpe:2.3:o:netapp:8300_firmware:-
OR
	Running on/with
	Netapp 8300	cpe:2.3:h:netapp:8300:-

Configuration #10

AND

		CPE23
OR
	Netapp 8700 Firmware	cpe:2.3:o:netapp:8700_firmware:-
OR
	Running on/with
	Netapp 8700	cpe:2.3:h:netapp:8700:-

Configuration #11

AND

		CPE23
OR
	Netapp A400 Firmware	cpe:2.3:o:netapp:a400_firmware:-
OR
	Running on/with
	Netapp A400	cpe:2.3:h:netapp:a400:-

Configuration #12

		CPE23	From	Up To
	Oracle Tekelec Platform Distribution from 7.4.0 version and 7.7.1 and prior versions	cpe:2.3:a:oracle:tekelec_platform_distribution	>= 7.4.0	<= 7.7.1