oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

2 kernel issues

From: Marcus Meissner <meissner () suse de>
Date: Thu, 10 Dec 2020 08:05:24 +0100
Hi,

Jann Horn found 2 locking issues in the Linux Kernel tty subsystem, which can be used for
the usual memory corruption things.

Mitre assigned 2 CVEs:

CVE-2020-29660:

A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13.
drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may
allow a read-after-free attack against TIOCGSID,
aka CID-c8bcd9c5be24.
 
[Reference]
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c8bcd9c5be24fb9e6132e97da5a35e55a83e36b9



CVE-2020-29661:

A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13.
drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.

[Reference]
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=54ffccbf053b5b6ca4f6e45094b942fab92a25fc

Ciao, Marcus
Previous By Date Next
Previous By Thread Next

Current thread: