Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2020-12465
HistoryMay 05, 2020 - 2:11 p.m.

CVE-2020-12465

2020-05-0514:11:02
redhat.com
access.redhat.com
13

0.0004 Low

EPSS

Percentile

5.1%

JSON

A memory overflow and data corruption flaw were found in the Mediatek MT76 driver module for WiFi in mt76_add_fragment in drivers/net/wireless/mediatek/mt76/dma.c. An oversized packet with too many rx fragments causes an overflow and corruption in memory of adjacent pages. A local attacker with a special user or root privileges can cause a denial of service or a leak of internal kernel information.

Mitigation

Mitigation for this issue is to skip loading the affected module mt76 onto the system until we have a fix available. This can be done by a blacklist mechanism and ensures the driver is not loaded at the boot time.

How do I blacklist a kernel module to prevent it from loading automatically?  
https://access.redhat.com/solutions/41278

Related

cve 1
nvd 1
osv 2
veracode 1
prion 1
cbl_mariner 1
ubuntucve 1
cvelist 1
debiancve 1
oraclelinux 2
nessus 8
photon 2
openvas 3
almalinux 1
redhat 3
cve
cve
CVE-2020-12465
2020-04-29 19:15:12
nvd
nvd
CVE-2020-12465
2020-04-29 19:15:12
osv
osv
CVE-2020-12465
2020-04-29 19:15:12
Moderate: kernel security, bug fix, and enhancement update
2020-11-03 12:03:57
veracode
veracode
Buffer Overflow
2020-11-05 03:16:43
prion
prion
Design/Logic Flaw
2020-04-29 19:15:00
cbl_mariner
cbl_mariner
CVE-2020-12465 affecting package kernel 5.4.91-6
2021-03-03 03:44:27
ubuntucve
ubuntucve
CVE-2020-12465
2020-04-29 00:00:00
cvelist
cvelist
CVE-2020-12465
2020-04-29 18:52:38
debiancve
debiancve
CVE-2020-12465
2020-04-29 19:15:12
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2020-06-09 00:00:00
kernel security, bug fix, and enhancement update
2020-11-10 00:00:00
nessus
nessus
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2020-5714)
2020-06-10 00:00:00
EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1592)
2020-05-26 00:00:00
EulerOS Virtualization for ARM 64 3.0.6.0 : kernel (EulerOS-SA-2020-1698)
2020-06-25 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0073
2020-03-27 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0073
2020-03-27 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1592)
2020-05-26 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1698)
2020-06-26 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1958)
2020-09-08 00:00:00
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2020-11-03 12:03:57
redhat
redhat
(RHSA-2020:4431) Moderate: kernel security, bug fix, and enhancement update
2020-11-03 12:03:57
(RHSA-2020:5635) Moderate: OpenShift Container Platform 4.7.0 extras and security update
2021-02-24 14:47:52
(RHSA-2020:5633) Moderate: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update
2021-02-24 14:49:26

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for RH:CVE-2020-12465
cve1nvd1osv2veracode1prion1cbl_mariner1ubuntucve1cvelist1debiancve1oraclelinux2nessus8photon2openvas3almalinux1redhat3