oss-sec mailing list archives
2 kernel issues
From: Marcus Meissner <meissner () suse de>
Date: Thu, 10 Dec 2020 08:05:24 +0100
Hi, Jann Horn found 2 locking issues in the Linux Kernel tty subsystem, which can be used for the usual memory corruption things. Mitre assigned 2 CVEs: CVE-2020-29660: A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24. [Reference] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c8bcd9c5be24fb9e6132e97da5a35e55a83e36b9 CVE-2020-29661: A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b. [Reference] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=54ffccbf053b5b6ca4f6e45094b942fab92a25fc Ciao, Marcus
Current thread:
- 2 kernel issues Marcus Meissner (Dec 10)