Linux Kernel used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE(CVE-2020-27777 ).
CVEID:CVE-2020-27777
**DESCRIPTION:**Linux Kernel for PowerPC could allow a local authenticated attacker to bypass security restrictions, caused by a flaw with the Run-Time Abstraction Services (RTAS) interface. By sending a specially-crafted request, an attacker could exploit this vulnerability to overwrite some parts of memory, including kernel memory.
CVSS Base score: 6.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/192283 for the current score.
CVSS Vector: (CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)
Affected Product(s) | Version(s) |
---|---|
IBM Integrated Analytics System | 1.0.0-1.0.27.0 |
IBM strongly recommends addressing the vulnerability now by applying below security patch.
Product | VRMF | Remediation / First Fix |
---|---|---|
IBM Integrated Analytics System | 7.9.21.12.SP6 | Link to fix central |
Please follow the steps given in release notes to upgrade system with security patches
None