CVE-2020-12652

 

Published at: - 05-05-2020 07:15

Last modified: - 26-10-2022 01:44

Total changes: - 3

Description

The __mptctl_ioctl function in drivers/message/fusion/mptctl.c in the Linux kernel before 5.4.14 allows local users to hold an incorrect lock during the ioctl operation and trigger a race condition, i.e., a "double fetch" vulnerability, aka CID-28d76df18f0a. NOTE: the vendor states "The security impact of this bug is not as bad as it could have been because these operations are all privileged and root already has enormous destructive power."

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

 

Verification logic

 

Reference

• https://github.com/torvalds/linux/commit/28d76df18f0ad5bcf5fa48510b225f0ed262a99b
• https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=28d76df18f0ad5bcf5fa48510b225f0ed262a99b
• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.14
• https://security.netapp.com/advisory/ntap-20200608-0001/
• [debian-lts-announce] 20200609 [SECURITY] [DLA 2241-1] linux security update-
• [debian-lts-announce] 20200610 [SECURITY] [DLA 2241-2] linux security update-
• [debian-lts-announce] 20200610 [SECURITY] [DLA 2242-1] linux-4.9 security update-
• DSA-4698-
• openSUSE-SU-2020:0801-

 

Keywords

NVD

 

CVE-2020-12652

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures