CVE-2020-10711 — MEDIUM (5.9)

Q: How severe is CVE-2020-10711?

CVE-2020-10711 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-10711?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat 3Scale, Redhat Openstack, Redhat Virtualization Host, Redhat Enterprise Linux.

Vulnerability Description

A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allows a remote network user to crash the system kernel, resulting in a denial of service.

CVSS Score

5.9

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	< 5.7
Redhat	3Scale	2.0
Redhat	Openstack	13
Redhat	Virtualization Host	4.0
Redhat	Enterprise Linux	6.0
Redhat	Enterprise Linux Aus	7.4
Redhat	Enterprise Linux Server Tus	7.4
Redhat	Messaging Realtime Grid	2.0
Debian	Debian Linux	8.0
Opensuse	Leap	15.1
Canonical	Ubuntu Linux	14.04

Related Weaknesses (CWE)

CWE-476

References

http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.htmlMailing ListThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10711Issue TrackingPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2020/06/msg00012.htmlThird Party Advisory
https://security.netapp.com/advisory/ntap-20200608-0001/Third Party Advisory
https://usn.ubuntu.com/4411-1/Third Party Advisory
https://usn.ubuntu.com/4412-1/Third Party Advisory
https://usn.ubuntu.com/4413-1/Third Party Advisory
https://usn.ubuntu.com/4414-1/Third Party Advisory
https://usn.ubuntu.com/4419-1/Third Party Advisory
https://www.debian.org/security/2020/dsa-4698Third Party Advisory
https://www.debian.org/security/2020/dsa-4699Third Party Advisory
https://www.openwall.com/lists/oss-security/2020/05/12/2Mailing ListPatchThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.htmlMailing ListThird Party Advisory

FAQ

What is CVE-2020-10711?

CVE-2020-10711 is a vulnerability with a CVSS score of 5.9 (MEDIUM). A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category...

How severe is CVE-2020-10711?

CVE-2020-10711 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-10711?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat 3Scale, Redhat Openstack, Redhat Virtualization Host, Redhat Enterprise Linux.