Vulnerability CVE-2020-0433

Vulnerability Name:

CVE-2020-0433

Assigned:

2019-10-17

Published:

2020-09-17

Updated:

2021-07-21

Summary:

In blk_mq_queue_tag_busy_iter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-151939299

CVSS v3 Severity:

7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-416

References:

Source: MITRE
Type: CNA
CVE-2020-0433

Source: MISC
Type: Patch, Vendor Advisory
https://source.android.com/security/bulletin/pixel/2020-09-01

Vulnerable Configuration:

Configuration 1:

cpe:/o:google:android:-:*:*:*:*:*:*:*

Denotes that component is vulnerable

Vulnerability Name:

CVE-2020-0433 (CCN-188478)

Assigned:

2019-10-17

Published:

2020-09-08

Updated:

2020-09-24

Summary:

CVSS v3 Severity:

7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

8.4 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.3 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-416

Vulnerability Consequences:

Gain Privileges

References:

Source: CCN
Type: Google Web site
Android

Source: MITRE
Type: CNA
CVE-2020-0433

Source: XF
Type: UNKNOWN
android-cve20200433-priv-esc(188478)

Source: CCN
Type: Android Open Source Project
Pixel Update BulletinSeptember 2020

Source: MISC
Type: Patch, Vendor Advisory
https://source.android.com/security/bulletin/pixel/2020-09-01

Vulnerable Configuration:

Configuration CCN 1:

cpe:/o:google:android:-:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:51560	P	Security update for cni (Important) (in QA)	2022-11-18
oval:org.opensuse.security:def:96992	P	apache2-2.4.33-3.15.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:96991	P	389-ds-1.4.0.3-2.39 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:87425	P	Security update for kernel-source (Important)	2021-07-01
oval:org.opensuse.security:def:32961	P	Security update for kernel-source (Important)	2021-07-01
oval:org.opensuse.security:def:58784	P	Security update for kernel-source (Important)	2021-07-01
oval:org.opensuse.security:def:99656	P	(Moderate)	2021-06-29
oval:org.opensuse.security:def:99964	P	(Important)	2021-06-18
oval:org.opensuse.security:def:6671	P	Security update for the Linux Kernel (Live Patch 22 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:67760	P	Security update for the Linux Kernel (Live Patch 22 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:96989	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:6675	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:67764	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:6672	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:67761	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:96990	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:96987	P	Security update for the Linux Kernel (Live Patch 23 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:6673	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:67762	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:6670	P	Security update for the Linux Kernel (Live Patch 23 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:67759	P	Security update for the Linux Kernel (Live Patch 23 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:96988	P	Security update for the Linux Kernel (Live Patch 22 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:6674	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:67763	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15) (Important)	2021-05-25
oval:org.opensuse.security:def:31173	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:56996	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:92113	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:8316	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:69648	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:99457	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:84597	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:92905	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:91421	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:98868	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:31620	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:57443	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:23572	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:10258	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:92308	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:105076	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:69847	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:96949	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:85637	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:93058	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:9508	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:91872	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:6893	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:67982	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:99063	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:32092	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:57915	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:92507	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:19513	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:8757	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:98386	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:86084	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:93211	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:9707	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:91918	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:99258	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:84140	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:92706	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:8952	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:70398	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:98822	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:86556	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:82568	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:29361	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:55184	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:83281	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:30074	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:55897	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:83401	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:30194	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:56017	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:125093	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:89125	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:33647	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:59470	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:127098	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:125264	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:89383	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:33905	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:59728	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:20257	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:88114	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:23898	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:125531	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:88426	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:51886	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:126701	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:19561	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:10077	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:96939	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:9323	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:8578	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:6669	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:67758	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:70217	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:8250	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:69463	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:19601	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:4393	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:35245	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:61068	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:20418	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:5016	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:26029	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:4269	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:34408	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:60231	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:21833	P	Security update for the Linux Kernel (Important)	2021-04-13
oval:org.opensuse.security:def:4721	P	Security update for the Linux Kernel (Important)	2021-04-13
oval:org.opensuse.security:def:34406	P	Security update for the Linux Kernel (Important)	2021-04-13
oval:org.opensuse.security:def:60229	P	Security update for the Linux Kernel (Important)	2021-04-13

BACK