CVE-2020-10711

moderate-risk
Published 2020-05-22

A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allows a remote network user to crash the system kernel, resulting in a denial of service.

Do I need to act?

~
5.4% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.9/10 Medium
NETWORK / HIGH complexity

Affected Products (20)

3Scale
Messaging Realtime Grid

Affected Vendors

Debian Redhat Linux Canonical Opensuse

References (26)

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html
Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.html
Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10711
Third Party Advisory https://lists.debian.org/debian-lts-announce/2020/06/msg00012.html
Third Party Advisory https://security.netapp.com/advisory/ntap-20200608-0001/
Third Party Advisory https://usn.ubuntu.com/4411-1/
Third Party Advisory https://usn.ubuntu.com/4412-1/
Third Party Advisory https://usn.ubuntu.com/4413-1/
Third Party Advisory https://usn.ubuntu.com/4414-1/
Third Party Advisory https://usn.ubuntu.com/4419-1/
Third Party Advisory https://www.debian.org/security/2020/dsa-4698
Third Party Advisory https://www.debian.org/security/2020/dsa-4699
Mailing List https://www.openwall.com/lists/oss-security/2020/05/12/2
Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html
Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.html
Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10711
Third Party Advisory https://lists.debian.org/debian-lts-announce/2020/06/msg00012.html
Third Party Advisory https://security.netapp.com/advisory/ntap-20200608-0001/
Third Party Advisory https://usn.ubuntu.com/4411-1/
Third Party Advisory https://usn.ubuntu.com/4412-1/
and 6 more references
46
/ 100
moderate-risk
Severity 18/34 · Moderate
Exploitability 8/34 · Low
Exposure 20/34 · Moderate