Home

CVE-2020-35508

Description

A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. A local attacker is able to abuse this flaw to bypass checks to send any signal to a privileged process.

Risk Information

Base Score
4.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
EPSS Score
Exploitation Probability
0.053

Associated Vulnerability

VulnerabilityOS Platform
Kernel-uek update (ELSA-2021-9215) kernel-uek-4.1.12-124.50.2.el7uek.x86_64.rpmLinux
Kernel-uek-debug update (ELSA-2021-9215) kernel-uek-debug-4.1.12-124.50.2.el7uek.x86_64.rpmLinux
Kernel-uek-debug-devel update (ELSA-2021-9215) kernel-uek-debug-devel-4.1.12-124.50.2.el7uek.x86_64.rpmLinux
Kernel-uek-devel update (ELSA-2021-9215) kernel-uek-devel-4.1.12-124.50.2.el7uek.x86_64.rpmLinux
Kernel-uek-doc update (ELSA-2021-9215) kernel-uek-doc-4.1.12-124.50.2.el7uek.noarch.rpmLinux
Kernel-uek-firmware update (ELSA-2021-9215) kernel-uek-firmware-4.1.12-124.50.2.el7uek.noarch.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update bpftool-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-abi-stablelists-4.18.0-305.el8.noarch.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-core-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-debug-devel-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-devel-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-305.el8.noarch.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-headers-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update perf-4.18.0-305.el8.x86_64.rpmLinux
(RHSA-2021:1578) kernel security, bug fix, and enhancement update python3-perf-4.18.0-305.el8.x86_64.rpmLinux
Linux kernel (USN-4751-1) linux-image-5.8.0-44-generic_5.8.0-44.50~20.04.1_amd64.debLinux
Linux kernel (USN-4751-1) linux-image-5.8.0-44-lowlatency_5.8.0-44.50~20.04.1_amd64.debLinux
Linux kernel for OEM systems (USN-4752-1) linux-image-5.6.0-1048-oem_5.6.0-1048.52_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234