Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2020-25221

Good to know:

icon
icon

Date: September 10, 2020

get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting (caused by gate page mishandling) of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit process that can use ptrace() or process_vm_readv(), aka CID-9fa2dd946743.

Language: C

Severity Score

Related Resources (10)

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.8.7
https://git.kernel.org/linus/9fa2dd946743ae6f30dc4830da19147bf100a7f2
https://security-tracker.debian.org/tracker/CVE-2020-25221
http://www.openwall.com/lists/oss-security/2020/09/10/4
https://git.kernel.org/linus/8891adc61dce2a8a41fc0c23262b681c3ec4b73a
https://security.netapp.com/advisory/ntap-20201001-0003/
https://www.openwall.com/lists/oss-security/2020/09/08/4
https://nvd.nist.gov/vuln/detail/CVE-2020-25221
https://people.canonical.com/~ubuntu-security/cve/CVE-2020-25221
https://www.mend.io/vulnerability-database/CVE-2020-25221

Severity Score

Weakness Type (CWE)

Operation on a Resource after Expiration or Release

CWE-672

Top Fix

icon

Upgrade Version

Upgrade to version v5.8.7

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): LOCAL
Access Complexity (AC): LOW
Authentication (AU): NONE
Confidentiality (C): COMPLETE
Integrity (I): COMPLETE
Availability (A): COMPLETE
Additional information:

Do you need more information?

Contact Us