CVE-2020-27786 — HIGH (7.8)

Q: How severe is CVE-2020-27786?

CVE-2020-27786 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-27786?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat Openshift Container Platform, Redhat Enterprise Linux, Redhat Enterprise Mrg, Netapp Cloud Backup.

Vulnerability Description

A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of execution to change and possibly allow for memory corruption or privilege escalation. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	< 4.4.224
Redhat	Openshift Container Platform	4.4
Redhat	Enterprise Linux	7.0
Redhat	Enterprise Mrg	2.0
Netapp	Cloud Backup	-
Netapp	Solidfire Baseboard Management Controller	-

Related Weaknesses (CWE)

CWE-416

References

http://www.openwall.com/lists/oss-security/2020/12/03/1Mailing List
https://bugzilla.redhat.com/show_bug.cgi?id=1900933Issue TrackingPatchThird Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c1PatchVendor Advisory
https://security.netapp.com/advisory/ntap-20210122-0002/Third Party Advisory
http://www.openwall.com/lists/oss-security/2020/12/03/1Mailing List
https://bugzilla.redhat.com/show_bug.cgi?id=1900933Issue TrackingPatchThird Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c1PatchVendor Advisory
https://security.netapp.com/advisory/ntap-20210122-0002/Third Party Advisory

FAQ

What is CVE-2020-27786?

CVE-2020-27786 is a vulnerability with a CVSS score of 7.8 (HIGH). A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. ...

How severe is CVE-2020-27786?

CVE-2020-27786 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-27786?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat Openshift Container Platform, Redhat Enterprise Linux, Redhat Enterprise Mrg, Netapp Cloud Backup.