VDB
CVE-2020-36777
CVE-2020-36777
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: Fix memory leak in dvb_media_device_free() dvb_media_device_free() is leaking memory. Free `dvbdev->adapter->conn` before setting it to NULL, as documented in include/media/media-device.h: "The media_entity instance itself must be freed explicitly by the driver if required."
EPSS 0.01% · 1.6th percentile
Risk Scores
EPSS Score
0.01%
1.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:Pro:FIPS:18.04:LTS | linux-azure-fips | 0, 4.15.0-1002.2 |
| Ubuntu:Pro:FIPS:18.04:LTS | linux-fips | 4.15.0-1011.12, 0 |
| Ubuntu:20.04:LTS | linux-hwe-5.13 | 5.13.0-52.59~20.04.1, *, * |
| Ubuntu:20.04:LTS | linux-intel-5.13 | 5.13.0-1009.9, 5.13.0-1014.15, 5.13.0-1017.19 |
| Ubuntu:22.04:LTS | linux-gcp-5.19 | 0, 5.19.0-1022.24~22.04.1, 5.19.0-1024.26~22.04.1 |
| Ubuntu:22.04:LTS | linux-gcp-6.2 | 6.2.0-1019.21~22.04.1, *, * |
| Ubuntu:18.04:LTS | linux-oracle-5.4 | 5.4.0-1042.45~18.04.1, 5.4.0-1019.19~18.04.1, 0 |
| Ubuntu:22.04:LTS | linux-allwinner-5.19 | *, 5.19.0-1010.10~22.04.1, 5.19.0-1011.11~22.04.1 |
| Ubuntu:Pro:16.04:LTS | linux-aws-hwe | 4.15.0-1040.42~16.04.1, 4.15.0-1039.41~16.04.1, 4.15.0-1036.38~16.04.1 |
| Ubuntu:20.04:LTS | linux-aws | 5.4.0-1009.9, 0, 5.3.0-1003.3 |
| Ubuntu:16.04:LTS | linux-hwe-edge | *, 4.15.0-15.16~16.04.1, 4.15.0-13.14~16.04.1 |
| Ubuntu:20.04:LTS | linux-azure-fde | *, *, 0 |
| Ubuntu:22.04:LTS | linux-lowlatency-hwe-6.2 | 6.2.0-1013.13~22.04.1, 6.2.0-1012.12~22.04.1, 6.2.0-1014.14~22.04.1 |
| Ubuntu:Pro:FIPS-updates:18.04:LTS | linux-aws-fips | 4.15.0-2021.21, 4.15.0-2037.39, 4.15.0-2038.40 |
| Ubuntu:Pro:FIPS:20.04:LTS | linux-fips | 0, 5.4.0-1007.8 |
| Ubuntu:22.04:LTS | linux-lowlatency-hwe-5.19 | 5.19.0-1021.22~22.04.1, 5.19.0-1017.18~22.04.1, 0 |
| Ubuntu:18.04:LTS | linux-gcp-4.15 | 4.15.0-1090.103, 4.15.0-1081.92, 4.15.0-1083.94 |
| Ubuntu:20.04:LTS | linux-raspi | 5.4.0-1023.26, 5.4.0-1007.7, 5.4.0-1008.8 |
| Ubuntu:20.04:LTS | linux-gcp | 5.4.0-1040.43, 5.4.0-1038.41, 5.4.0-1037.40 |
| Ubuntu:Pro:16.04:LTS | linux-azure | 4.15.0-1041.45, 4.15.0-1059.64, 4.15.0-1063.68 |
…and 90 more
Timeline
- Feb 27, 2024 CVE Published
- Feb 28, 2024 EPSS Score
- Mar 26, 2024 EPSS Score
- Apr 21, 2024 EPSS Score
- May 18, 2024 EPSS Score
- Jun 13, 2024 EPSS Score
- Jul 10, 2024 EPSS Score
- Aug 6, 2024 EPSS Score
- Sep 1, 2024 EPSS Score
- Sep 28, 2024 EPSS Score
- Oct 25, 2024 EPSS Score
- Nov 20, 2024 EPSS Score
References
- https://ubuntu.com/security/CVE-2020-36777 third-party-advisory
- https://git.kernel.org/linus/bf9a40ae8d722f281a2721779595d6df1c33a0bf third-party-advisory
- https://git.kernel.org/stable/c/06854b943e0571ccbd7ad0a529babed1a98ff275 third-party-advisory
- https://git.kernel.org/stable/c/32168ca1f123316848fffb85d059860adf3c409f third-party-advisory
- https://git.kernel.org/stable/c/cd89f79be5d553c78202f686e8e4caa5fbe94e98 third-party-advisory
- https://git.kernel.org/stable/c/9185b3b1c143b8da409c19ac5a785aa18d67a81b third-party-advisory
- https://git.kernel.org/stable/c/43263fd43083e412311fa764cd04a727b0c6a749 third-party-advisory
- https://git.kernel.org/stable/c/9ad15e214fcd73694ea51967d86055f47b802066 third-party-advisory
- https://git.kernel.org/stable/c/cede24d13be6c2a62be6d7ceea63c2719b0cfa82 third-party-advisory
- https://git.kernel.org/stable/c/bf9a40ae8d722f281a2721779595d6df1c33a0bf third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2020-36777 third-party-advisory