CVE-2020-35508

CVSS v3.1 4.5 (Medium)

CVSS v2.0 4.4 (Medium)

EPSS 0.04 % (5^th)

Affected Products 33

Advisories 7

A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. A local attacker is able to abuse this flaw to bypass checks to send any signal to a privileged process.

Weaknesses

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-665: Improper Initialization

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2021-03-26 17:15:12
(3 years ago)
Updated Date: 2023-02-12 23:41:00
(19 months ago)

Affected Products

Configuration #1

AND

		CPE23	Up To
OR
	Linux Kernel prior 5.12 version	cpe:2.3:o:linux:linux_kernel	< 5.12
OR
	Running on/with
	Linux Kernel 5.12	cpe:2.3:o:linux:linux_kernel:5.12:-
OR
	Running on/with
	Linux Kernel 5.12 Rc1	cpe:2.3:o:linux:linux_kernel:5.12:rc1
OR
	Running on/with
	Linux Kernel 5.12 Rc2	cpe:2.3:o:linux:linux_kernel:5.12:rc2
OR
	Running on/with
	Linux Kernel 5.12 Rc3	cpe:2.3:o:linux:linux_kernel:5.12:rc3
OR
	Running on/with
	Linux Kernel 5.12 Rc4	cpe:2.3:o:linux:linux_kernel:5.12:rc4

Configuration #2

AND

		CPE23	From	Up To
OR
	Redhat Enterprise Linux 8.0	cpe:2.3:o:redhat:enterprise_linux:8.0

Configuration #3

AND

		CPE23
OR
	Netapp A700s Firmware	cpe:2.3:o:netapp:a700s_firmware:-
OR
	Running on/with
	Netapp A700s	cpe:2.3:h:netapp:a700s:-

Configuration #4

AND

		CPE23	From	Up To
OR
	Netapp Brocade Fabric Operating System Firmware	cpe:2.3:o:netapp:brocade_fabric_operating_system_firmware:-

Configuration #5

AND

		CPE23
OR
	Netapp Fas8300 Firmware	cpe:2.3:o:netapp:fas8300_firmware:-
OR
	Running on/with
	Netapp Fas8300	cpe:2.3:h:netapp:fas8300:-

Configuration #6

AND

		CPE23
OR
	Netapp Fas8700 Firmware	cpe:2.3:o:netapp:fas8700_firmware:-
OR
	Running on/with
	Netapp Fas8700	cpe:2.3:h:netapp:fas8700:-

Configuration #7

AND

		CPE23
OR
	Netapp Aff A400 Firmware	cpe:2.3:o:netapp:aff_a400_firmware:-
OR
	Running on/with
	Netapp Aff A400	cpe:2.3:h:netapp:aff_a400:-

Configuration #8

AND

		CPE23
OR
	Netapp H300s Firmware	cpe:2.3:o:netapp:h300s_firmware:-
OR
	Running on/with
	Netapp H300s	cpe:2.3:h:netapp:h300s:-

Configuration #9

AND

		CPE23
OR
	Netapp H500s Firmware	cpe:2.3:o:netapp:h500s_firmware:-
OR
	Running on/with
	Netapp H500s	cpe:2.3:h:netapp:h500s:-

Configuration #10

AND

		CPE23
OR
	Netapp H700s Firmware	cpe:2.3:o:netapp:h700s_firmware:-
OR
	Running on/with
	Netapp H700s	cpe:2.3:h:netapp:h700s:-

Configuration #11

AND

		CPE23
OR
	Netapp H300e Firmware	cpe:2.3:o:netapp:h300e_firmware:-
OR
	Running on/with
	Netapp H300e	cpe:2.3:h:netapp:h300e:-

Configuration #12

AND

		CPE23
OR
	Netapp H500e Firmware	cpe:2.3:o:netapp:h500e_firmware:-
OR
	Running on/with
	Netapp H500e	cpe:2.3:h:netapp:h500e:-

Configuration #13

AND

		CPE23
OR
	Netapp H700e Firmware	cpe:2.3:o:netapp:h700e_firmware:-
OR
	Running on/with
	Netapp H700e	cpe:2.3:h:netapp:h700e:-

Configuration #14

AND

		CPE23
OR
	Netapp H410s Firmware	cpe:2.3:o:netapp:h410s_firmware:-
OR
	Running on/with
	Netapp H410s	cpe:2.3:h:netapp:h410s:-

Configuration #15

AND

		CPE23
OR
	Netapp H410c Firmware	cpe:2.3:o:netapp:h410c_firmware:-
OR
	Running on/with
	Netapp H410c	cpe:2.3:h:netapp:h410c:-

Configuration #16

AND

		CPE23
OR
	Netapp H610c Firmware	cpe:2.3:o:netapp:h610c_firmware:-
OR
	Running on/with
	Netapp H610c	cpe:2.3:h:netapp:h610c:-

Configuration #17

AND

		CPE23
OR
	Netapp H610s Firmware	cpe:2.3:o:netapp:h610s_firmware:-
OR
	Running on/with
	Netapp H610s	cpe:2.3:h:netapp:h610s:-

Configuration #18

AND

		CPE23
OR
	Netapp H615c Firmware	cpe:2.3:o:netapp:h615c_firmware:-
OR
	Running on/with
	Netapp H615c	cpe:2.3:h:netapp:h615c:-