CVE-2020-25670 - Linux Linux Kernel and Fedoraproject Fedora
Critical 7.8
A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations.
Affected software
Linux Linux Kernel
Fedoraproject Fedora
Reference links
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PW3OASG7OEMHANDWBM5US5WKTOC76KMH/
- http://www.openwall.com/lists/oss-security/2020/11/01/1
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTVACC6PGS6OSD3EYY7FZUAZT2EUMFH5/
- http://www.openwall.com/lists/oss-security/2021/05/11/4
- https://www.openwall.com/lists/oss-security/2020/11/01/1
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VEIEGQXUW37YHZ5MTAZTDCIMHUN26NJS/