Home

CVE-2020-0067

Description

In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not required for exploitation.Product: Android. Versions: Android kernel. Android ID: A-120551147.

Risk Information

Base Score
4.4
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.056

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel for Google Container Engine (GKE) systems (USN-4388-1) linux-image-gke-5.0_5.0.0.1042.27_amd64.debLinux
Linux kernel for Google Container Engine (GKE) systems (USN-4388-1) linux-image-oem-osp1_5.0.0.1059.58_amd64.debLinux
Linux kernel for Google Container Engine (GKE) systems (USN-4388-1) linux-image-5.0.0-1042-gke_5.0.0-1042.43_amd64.debLinux
Linux kernel for Google Container Engine (GKE) systems (USN-4388-1) linux-image-5.0.0-1059-oem-osp1_5.0.0-1059.64_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-gcp_4.15.0.1077.79_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-gke_4.15.0.1063.65_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-gke_4.15.0.1077.79_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-kvm_4.15.0.1067.63_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-oem_4.15.0.106.111_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-oem_4.15.0.1087.91_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-azure_4.15.0.1089.84_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-oracle_4.15.0.1045.38_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-aws-hwe_4.15.0.1073.73_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-generic_4.15.0.106.94_i386.debLinux
Linux kernel (USN-4390-1) linux-image-generic_4.15.0.106.94_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-virtual_4.15.0.106.94_i386.debLinux
Linux kernel (USN-4390-1) linux-image-virtual_4.15.0.106.94_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-gke-4.15_4.15.0.1063.65_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-azure-edge_4.15.0.1089.84_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-lowlatency_4.15.0.106.94_i386.debLinux
Linux kernel (USN-4390-1) linux-image-lowlatency_4.15.0.106.94_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-aws-lts-18.04_4.15.0.1073.76_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1063-gke_4.15.0-1063.66_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1067-kvm_4.15.0-1067.68_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1073-aws_4.15.0-1073.77_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1073-aws_4.15.0-1073.77~16.04.1_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1077-gcp_4.15.0-1077.87~16.04.1_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1087-oem_4.15.0-1087.97_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-azure-lts-18.04_4.15.0.1089.60_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-oracle-lts-18.04_4.15.0.1045.54_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1089-azure_4.15.0-1089.99_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1089-azure_4.15.0-1089.99~16.04.1_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-generic-hwe-16.04_4.15.0.106.111_i386.debLinux
Linux kernel (USN-4390-1) linux-image-generic-hwe-16.04_4.15.0.106.111_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-virtual-hwe-16.04_4.15.0.106.111_i386.debLinux
Linux kernel (USN-4390-1) linux-image-virtual-hwe-16.04_4.15.0.106.111_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1045-oracle_4.15.0-1045.49_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-1045-oracle_4.15.0-1045.49~16.04.1_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-106-generic_4.15.0-106.107_i386.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-106-generic_4.15.0-106.107_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-106-generic_4.15.0-106.107~16.04.1_i386.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-106-generic_4.15.0-106.107~16.04.1_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-lowlatency-hwe-16.04_4.15.0.106.111_i386.debLinux
Linux kernel (USN-4390-1) linux-image-lowlatency-hwe-16.04_4.15.0.106.111_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-106-lowlatency_4.15.0-106.107_i386.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-106-lowlatency_4.15.0-106.107_amd64.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-106-lowlatency_4.15.0-106.107~16.04.1_i386.debLinux
Linux kernel (USN-4390-1) linux-image-4.15.0-106-lowlatency_4.15.0-106.107~16.04.1_amd64.debLinux
Linux kernel (USN-4527-1) linux-image-aws_4.4.0.1114.119_amd64.debLinux
Linux kernel (USN-4527-1) linux-image-generic_4.4.0.190.196_i386.debLinux
Linux kernel (USN-4527-1) linux-image-generic_4.4.0.190.196_amd64.debLinux
Linux kernel (USN-4527-1) linux-image-virtual_4.4.0.190.196_i386.debLinux
Linux kernel (USN-4527-1) linux-image-virtual_4.4.0.190.196_amd64.debLinux
Linux kernel (USN-4527-1) linux-image-lowlatency_4.4.0.190.196_i386.debLinux
Linux kernel (USN-4527-1) linux-image-lowlatency_4.4.0.190.196_amd64.debLinux
Linux kernel (USN-4527-1) linux-image-4.4.0-1114-aws_4.4.0-1114.127_amd64.debLinux
Linux kernel (USN-4527-1) linux-image-4.4.0-190-generic_4.4.0-190.220_i386.debLinux
Linux kernel (USN-4527-1) linux-image-4.4.0-190-generic_4.4.0-190.220_amd64.debLinux
Linux kernel (USN-4527-1) linux-image-4.4.0-190-lowlatency_4.4.0-190.220_i386.debLinux
Linux kernel (USN-4527-1) linux-image-4.4.0-190-lowlatency_4.4.0-190.220_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234