CVE-2020-8832

Sažetak

The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 ("The Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.") was discovered to be incomplete, meaning that in versions of the kernel before 4.15.0-91.92, an attacker could use this vulnerability to expose sensitive information.

Reference

https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1862840
https://usn.ubuntu.com/usn/usn-4302-1
https://security.netapp.com/advisory/ntap-20200430-0004/

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

09-11-2023 - 14:44

Objavljeno

10-04-2020 - 00:15