CVE-2019-20794

low-risk
Published 2020-05-09

An issue was discovered in the Linux kernel 4.18 through 5.6.11 when unprivileged user namespaces are allowed. A user can create their own PID namespace, and mount a FUSE filesystem. Upon interaction with this FUSE filesystem, if the userspace component is terminated via a kill of the PID namespace's pid 1, it will result in a hung task, and resources being permanently locked up until system reboot. This can result in resource exhaustion.

Do I need to act?

-
0.09% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.7/10 Medium
LOCAL / HIGH complexity

Affected Products (1)

Affected Vendors

Linux

References (8)

Mailing List http://www.openwall.com/lists/oss-security/2020/08/24/1
Exploit https://github.com/sargun/fuse-example
Third Party Advisory https://security.netapp.com/advisory/ntap-20200608-0001/
Exploit https://sourceforge.net/p/fuse/mailman/message/36598753/
Mailing List http://www.openwall.com/lists/oss-security/2020/08/24/1
Exploit https://github.com/sargun/fuse-example
Third Party Advisory https://security.netapp.com/advisory/ntap-20200608-0001/
Exploit https://sourceforge.net/p/fuse/mailman/message/36598753/
17
/ 100
low-risk
Severity 12/34 · Low
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal