CVE-2020-10751

2020-05-2600:00:00

ubuntu.com

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:P/A:N

6.1 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

0.001 Low

EPSS

Percentile

19.5%

JSON

A flaw was found in the Linux kernels SELinux LSM hook implementation
before version 5.7, where it incorrectly assumed that an skb would only
contain a single netlink message. The hook would incorrectly only validate
the first netlink message in the skb and allow or deny the rest of the
messages within the skb with the granted permission without further
processing.

Notes

Author	Note
sbeattie	SELinux specific, not the default LSM in Ubuntu.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-106.107UNKNOWN
ubuntu19.10noarchlinux< 5.3.0-62.56UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-37.41UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-184.214UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1073.77UNKNOWN
ubuntu19.10noarchlinux-aws< 5.3.0-1030.32UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1015.15UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1073.77UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1109.120UNKNOWN
ubuntu18.04noarchlinux-aws-5.3< 5.3.0-1030.32~18.04.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< 4.15.0-106.107	UNKNOWN
ubuntu	19.10	noarch	linux	< 5.3.0-62.56	UNKNOWN
ubuntu	20.04	noarch	linux	< 5.4.0-37.41	UNKNOWN
ubuntu	16.04	noarch	linux	< 4.4.0-184.214	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< 4.15.0-1073.77	UNKNOWN
ubuntu	19.10	noarch	linux-aws	< 5.3.0-1030.32	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1015.15	UNKNOWN
ubuntu	14.04	noarch	linux-aws	< 4.4.0-1073.77	UNKNOWN
ubuntu	16.04	noarch	linux-aws	< 4.4.0-1109.120	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.3	< 5.3.0-1030.32~18.04.1	UNKNOWN