Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2020-12652
HistoryMay 05, 2020 - 12:00 a.m.

CVE-2020-12652

2020-05-0500:00:00
ubuntu.com
ubuntu.com
18

4.7 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

4.1 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

The __mptctl_ioctl function in drivers/message/fusion/mptctl.c in the Linux
kernel before 5.4.14 allows local users to hold an incorrect lock during
the ioctl operation and trigger a race condition, i.e., a “double fetch”
vulnerability, aka CID-28d76df18f0a. NOTE: the vendor states “The security
impact of this bug is not as bad as it could have been because these
operations are all privileged and root already has enormous destructive
power.”

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-91.92UNKNOWN
ubuntu19.10noarchlinux< 5.3.0-42.34UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-174.204UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1063.67UNKNOWN
ubuntu19.10noarchlinux-aws< 5.3.0-1013.14UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1062.66UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1102.113UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1063.67~16.04.1UNKNOWN
ubuntu19.10noarchlinux-azure< 5.3.0-1016.17UNKNOWN
ubuntu14.04noarchlinux-azure< 4.15.0-1074.79~14.04.1UNKNOWN
Rows per page:
1-10 of 351

Related

cve 1
cvelist 1
prion 1
redhatcve 1
nvd 1
debiancve 1
ibm 1
openvas 23
nessus 29
photon 5
oraclelinux 2
suse 2
osv 3
debian 5
cve
cve
CVE-2020-12652
2020-05-05 05:15:11
cvelist
cvelist
CVE-2020-12652
2020-05-05 04:23:59
prion
prion
Race condition
2020-05-05 05:15:00
redhatcve
redhatcve
CVE-2020-12652
2020-05-05 19:10:01
nvd
nvd
CVE-2020-12652
2020-05-05 05:15:11
debiancve
debiancve
CVE-2020-12652
2020-05-05 05:15:11
ibm
ibm
Security Bulletin: Publicly disclosed vulnerabilities from Kernel affect IBM Netezza Host Management
2020-09-23 12:38:02
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:14393-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:1596-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:1597-1)
2021-04-19 00:00:00
nessus
nessus
SUSE SLES11 Security Update : kernel (SUSE-SU-2020:14393-1)
2021-06-10 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2020:1597-1)
2020-06-18 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2020:1596-1)
2020-06-18 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0279
2020-02-21 00:00:00
Important Photon OS Security Update - PHSA-2020-0279
2020-02-21 00:00:00
Important Photon OS Security Update - PHSA-2020-0219
2020-02-20 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2021-01-07 00:00:00
Unbreakable Enterprise kernel security update
2020-07-10 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2020-06-13 00:00:00
Security update for RT kernel (moderate)
2021-02-05 00:00:00
osv
osv
linux - security update
2020-06-09 00:00:00
linux-4.9 - security update
2020-06-09 00:00:00
linux - security update
2020-06-09 00:00:00
debian
debian
[SECURITY] [DSA 4698-1] linux security update
2020-06-09 19:44:16
[SECURITY] [DSA 4698-1] linux security update
2020-06-09 19:44:16
[SECURITY] [DLA 2242-1] linux-4.9 security update
2020-06-10 10:48:38

4.7 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

4.1 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for UB:CVE-2020-12652
cve1cvelist1prion1redhatcve1nvd1debiancve1ibm1openvas23nessus29photon5oraclelinux2suse2osv3debian5