CVE-2020-10769
Description
A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys in crypto/authenc.c in the IPsec Cryptographic algorithms module, authenc. When a payload longer than 4 bytes, and is not following 4-byte alignment boundary guidelines, it causes a buffer over-read threat, leading to a system crash. This flaw allows a local attacker with user privileges to cause a denial of service.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.177
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2020:14442-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.117.1.i586.rpm | Linux |
| SUSE-SU-2020:14442-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.117.1.x86_64.rpm | Linux |
| SUSE-SU-2020:14442-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-pae-extra-3.0.101-108.117.1.i586.rpm | Linux |
| SUSE-SU-2020:14442-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-trace-extra-3.0.101-108.117.1.x86_64.rpm | Linux |
| SUSE-SU-2020:14442-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.117.1.i586.rpm | Linux |
| SUSE-SU-2020:14442-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.117.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.22.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.22.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.22.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.22.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.22.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.22.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.22.1.noarch.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.22.1.noarch.rpm | Linux |
| SUSE-SU-2020:2119-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.22.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.29.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.29.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.29.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.29.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.29.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.29.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.29.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.29.1.noarch.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.29.1.noarch.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.29.1.noarch.rpm | Linux |
| SUSE-SU-2020:2122-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.29.1.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update bpftool-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-abi-whitelists-3.10.0-1160.11.1.el7.noarch.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-debug-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-debug-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-doc-3.10.0-1160.11.1.el7.noarch.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-headers-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-tools-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-tools-libs-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update perf-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (RHSA-2020:5437) kernel security and bug fix update python-perf-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Bpftool update (ELSA-2020-5437) bpftool-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Kernel update (ELSA-2020-5437) kernel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Kernel-abi-whitelists update (ELSA-2020-5437) kernel-abi-whitelists-3.10.0-1160.11.1.el7.noarch.rpm | Linux |
| Kernel-debug update (ELSA-2020-5437) kernel-debug-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Kernel-debug-devel update (ELSA-2020-5437) kernel-debug-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Kernel-devel update (ELSA-2020-5437) kernel-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Kernel-doc update (ELSA-2020-5437) kernel-doc-3.10.0-1160.11.1.el7.noarch.rpm | Linux |
| Kernel-headers update (ELSA-2020-5437) kernel-headers-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Kernel-tools update (ELSA-2020-5437) kernel-tools-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Kernel-tools-libs update (ELSA-2020-5437) kernel-tools-libs-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Kernel-tools-libs-devel update (ELSA-2020-5437) kernel-tools-libs-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Perf update (ELSA-2020-5437) perf-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Python-perf update (ELSA-2020-5437) python-perf-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Dtrace-modules-3.8.13-118.52.1.el6uek update (ELSA-2020-5968) dtrace-modules-3.8.13-118.52.1.el6uek-0.4.5-3.el6.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2020-5968) kernel-uek-3.8.13-118.52.1.el6uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2020-5968) kernel-uek-debug-3.8.13-118.52.1.el6uek.x86_64.rpm | Linux |
| Dtrace-modules-3.8.13-118.52.1.el7uek update (ELSA-2020-5968) dtrace-modules-3.8.13-118.52.1.el7uek-0.4.5-3.el7.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2020-5968) kernel-uek-debug-devel-3.8.13-118.52.1.el6uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2020-5968) kernel-uek-devel-3.8.13-118.52.1.el6uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2020-5968) kernel-uek-doc-3.8.13-118.52.1.el6uek.noarch.rpm | Linux |
| Kernel-uek-firmware update (ELSA-2020-5968) kernel-uek-firmware-3.8.13-118.52.1.el6uek.noarch.rpm | Linux |
| Kernel-uek update (ELSA-2020-5968) kernel-uek-3.8.13-118.52.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2020-5968) kernel-uek-debug-3.8.13-118.52.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2020-5968) kernel-uek-debug-devel-3.8.13-118.52.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2020-5968) kernel-uek-devel-3.8.13-118.52.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2020-5968) kernel-uek-doc-3.8.13-118.52.1.el7uek.noarch.rpm | Linux |
| Kernel-uek-firmware update (ELSA-2020-5968) kernel-uek-firmware-3.8.13-118.52.1.el7uek.noarch.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update bpftool-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-abi-whitelists-3.10.0-1160.11.1.el7.noarch.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-debug-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-debug-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-doc-3.10.0-1160.11.1.el7.noarch.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-headers-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-tools-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-tools-libs-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update perf-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| (CESA-2020:5437) kernel security and bug fix update python-perf-3.10.0-1160.11.1.el7.x86_64.rpm | Linux |
| Out-of-bounds Read Vulnerability (CVE-2020-10769) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234