Executive Summary

Informations
Name CVE-2020-25668 First vendor Publication 2021-05-26
Vendor Cve Last vendor Modification 2023-11-07

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Overall CVSS Score 7
Base Score 7 Environmental Score 7
impact SubScore 5.9 Temporal Score 7
Exploitabality Sub Score 1
 
Attack Vector Local Attack Complexity High
Privileges Required Low User Interaction None
Scope Unchanged Confidentiality Impact High
Integrity Impact High Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 6.9 Attack Range Local
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 3.4 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25668

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-662 Insufficient Synchronization

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1
Application 1
Application 1
Os 1
Os 3402

Sources (Detail)

https://bugzilla.redhat.com/show_bug.cgi?id=1893287%2C
https://www.openwall.com/lists/oss-security/2020/10/30/1%2C
https://www.openwall.com/lists/oss-security/2020/11/04/3%2C
Source Url
CONFIRM https://security.netapp.com/advisory/ntap-20210702-0005/
MISC https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=...
MLIST http://www.openwall.com/lists/oss-security/2020/10/30/1
http://www.openwall.com/lists/oss-security/2020/11/04/3
https://lists.debian.org/debian-lts-announce/2020/12/msg00015.html
https://lists.debian.org/debian-lts-announce/2020/12/msg00027.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
Date Informations
2024-03-12 13:06:44
  • Multiple Updates
2024-02-02 02:15:12
  • Multiple Updates
2024-02-01 12:20:31
  • Multiple Updates
2023-12-29 02:06:51
  • Multiple Updates
2023-11-22 02:06:23
  • Multiple Updates
2023-11-07 21:34:52
  • Multiple Updates
2023-10-05 21:27:50
  • Multiple Updates
2023-09-29 13:01:20
  • Multiple Updates
2023-09-05 13:09:39
  • Multiple Updates
2023-09-05 01:20:08
  • Multiple Updates
2023-09-02 13:08:28
  • Multiple Updates
2023-09-02 01:20:26
  • Multiple Updates
2023-08-12 13:13:12
  • Multiple Updates
2023-08-12 01:19:41
  • Multiple Updates
2023-08-11 13:06:16
  • Multiple Updates
2023-08-11 01:20:19
  • Multiple Updates
2023-08-06 05:27:50
  • Multiple Updates
2023-08-06 01:19:31
  • Multiple Updates
2023-08-04 05:27:59
  • Multiple Updates
2023-08-04 01:19:47
  • Multiple Updates
2023-07-29 00:27:49
  • Multiple Updates
2022-08-05 21:27:38
  • Multiple Updates
2022-05-14 00:27:34
  • Multiple Updates
2021-08-05 01:38:14
  • Multiple Updates
2021-07-02 17:23:00
  • Multiple Updates
2021-06-04 17:22:50
  • Multiple Updates
2021-06-02 01:39:22
  • Multiple Updates
2021-06-02 01:35:30
  • Multiple Updates
2021-06-01 17:22:49
  • Multiple Updates
2021-05-26 17:22:49
  • First insertion