Vulnetix
Try Vulnetix Request Demo
CVE-2020-0067 PUBLISHED

In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not required for exploitation.Product: Android. Versions: Android kernel. Android ID: A-120551147.

EPSS 0.06% · 17.5th percentile

Risk Scores

EPSS Score
0.06%
17.5th percentile

Affected Products

VendorProductVersions
Ubuntu:20.04:LTSlinux-gcp5.4.0-1011.11, 5.4.0-1009.9, 5.4.0-1008.8
Ubuntu:20.04:LTSlinux-raspi5.4.0-1007.7, 0, 5.4.0-1011.11
Ubuntu:18.04:LTSlinux-oem-osp15.0.0-1033.38, 5.0.0-1050.55, 5.0.0-1046.51
Ubuntu:Pro:14.04:LTSlinux3.13.0-29.53, 3.13.0-30.54, 3.13.0-30.55
Ubuntu:20.04:LTSlinux-oracle5.3.0-1002.2, 0, 5.3.0-1008.9
Ubuntu:18.04:LTSlinux-hwe4.18.0-14.15~18.04.1, 4.18.0-15.16~18.04.1, 4.18.0-16.17~18.04.1
Ubuntu:20.04:LTSlinux5.3.0-18.19, 0, 5.3.0-24.26
Ubuntu:20.04:LTSlinux-riscv5.4.0-24.28, 5.4.0-26.30, 0
Ubuntu:16.04:LTSlinux-gcp4.15.0-1023.24~16.04.1, 4.15.0-1025.26~16.04.1, 4.15.0-1026.27~16.04.1
Ubuntu:16.04:LTSlinux-hwe-edge4.15.0-23.25~16.04.1, *, *
Ubuntu:Pro:FIPS-updates:18.04:LTSlinux-aws-fips4.15.0-2000.4, 0
Ubuntu:18.04:LTSlinux-gcp-edge*, 5.0.0-1011.11~18.04.1, 4.18.0-1015.16~18.04.1
Ubuntu:16.04:LTSlinux-snapdragon4.4.0-1015.18, 4.4.0-1053.57, 4.4.0-1054.58
Ubuntu:16.04:LTSlinux4.4.0-42.62, 4.4.0-43.63, 4.4.0-47.68
Ubuntu:Pro:14.04:LTSlinux-lts-xenial4.4.0-173.203~14.04.1, 4.4.0-176.206~14.04.1, 4.4.0-177.207~14.04.1
Ubuntu:Pro:14.04:LTSlinux-aws4.4.0-1024.25, 4.4.0-1061.65, 4.4.0-1060.64
Ubuntu:18.04:LTSlinux-oem4.15.0-1015.18, 4.15.0-1006.9, 4.15.0-1034.39
Ubuntu:Pro:FIPS:18.04:LTSlinux-gcp-fips4.15.0-1001.1, 0
Ubuntu:18.04:LTSlinux-oracle-5.05.0.0-1010.15~18.04.1, 0, 5.0.0-1007.12~18.04.1
Ubuntu:Pro:FIPS-updates:18.04:LTSlinux-azure-fips4.15.0-1002.2, 0

…and 43 more

Timeline

References

Open in Interactive Console →