{ "threat_severity" : "Important", "public_date" : "2020-12-04T00:00:00Z", "bugzilla" : { "description" : "kernel: locking issue in drivers/tty/tty_jobctrl.c can lead to an use-after-free", "id" : "1906525", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1906525" }, "cvss3" : { "cvss3_base_score" : "7.8", "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "status" : "verified" }, "cwe" : "CWE-825", "details" : [ "A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.", "A locking vulnerability was found in the tty subsystem of the Linux kernel in drivers/tty/tty_jobctrl.c. This flaw allows a local attacker to possibly corrupt memory or escalate privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability." ], "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 6 Extended Lifecycle Support", "release_date" : "2021-04-20T00:00:00Z", "advisory" : "RHSA-2021:1288", "cpe" : "cpe:/o:redhat:rhel_els:6", "package" : "kernel-0:2.6.32-754.39.1.el6" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2021-03-16T00:00:00Z", "advisory" : "RHSA-2021:0857", "cpe" : "cpe:/a:redhat:rhel_extras_rt:7", "package" : "kernel-rt-0:3.10.0-1160.21.1.rt56.1158.el7" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2021-02-02T00:00:00Z", "advisory" : "RHSA-2021:0354", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "kernel-alt-0:4.14.0-115.35.1.el7a" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2021-03-16T00:00:00Z", "advisory" : "RHSA-2021:0856", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "kernel-0:3.10.0-1160.21.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2021-03-16T00:00:00Z", "advisory" : "RHSA-2021:0862", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "kpatch-patch" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Advanced Update Support", "release_date" : "2021-06-01T00:00:00Z", "advisory" : "RHSA-2021:2164", "cpe" : "cpe:/o:redhat:rhel_aus:7.4", "package" : "kernel-0:3.10.0-693.87.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Telco Extended Update Support", "release_date" : "2021-06-01T00:00:00Z", "advisory" : "RHSA-2021:2164", "cpe" : "cpe:/o:redhat:rhel_tus:7.4", "package" : "kernel-0:3.10.0-693.87.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions", "release_date" : "2021-06-01T00:00:00Z", "advisory" : "RHSA-2021:2164", "cpe" : "cpe:/o:redhat:rhel_e4s:7.4", "package" : "kernel-0:3.10.0-693.87.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.6 Extended Update Support", "release_date" : "2021-03-16T00:00:00Z", "advisory" : "RHSA-2021:0878", "cpe" : "cpe:/o:redhat:rhel_eus:7.6", "package" : "kernel-0:3.10.0-957.70.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.6 Extended Update Support", "release_date" : "2021-03-18T00:00:00Z", "advisory" : "RHSA-2021:0940", "cpe" : "cpe:/o:redhat:rhel_eus:7.6", "package" : "kpatch-patch" }, { "product_name" : "Red Hat Enterprise Linux 7.7 Extended Update Support", "release_date" : "2021-03-30T00:00:00Z", "advisory" : "RHSA-2021:1028", "cpe" : "cpe:/o:redhat:rhel_eus:7.7", "package" : "kernel-0:3.10.0-1062.46.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.7 Extended Update Support", "release_date" : "2021-03-30T00:00:00Z", "advisory" : "RHSA-2021:1031", "cpe" : "cpe:/o:redhat:rhel_eus:7.7", "package" : "kpatch-patch" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2021-02-16T00:00:00Z", "advisory" : "RHSA-2021:0537", "cpe" : "cpe:/a:redhat:enterprise_linux:8::nfv", "package" : "kernel-rt-0:4.18.0-240.15.1.rt7.69.el8_3" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2021-02-16T00:00:00Z", "advisory" : "RHSA-2021:0558", "cpe" : "cpe:/o:redhat:enterprise_linux:8", "package" : "kernel-0:4.18.0-240.15.1.el8_3" }, { "product_name" : "Red Hat Enterprise Linux 8.1 Extended Update Support", "release_date" : "2021-03-03T00:00:00Z", "advisory" : "RHSA-2021:0686", "cpe" : "cpe:/o:redhat:rhel_eus:8.1", "package" : "kernel-0:4.18.0-147.43.1.el8_1" }, { "product_name" : "Red Hat Enterprise Linux 8.1 Extended Update Support", "release_date" : "2021-03-03T00:00:00Z", "advisory" : "RHSA-2021:0689", "cpe" : "cpe:/o:redhat:rhel_eus:8.1", "package" : "kpatch-patch" }, { "product_name" : "Red Hat Enterprise Linux 8.2 Extended Update Support", "release_date" : "2021-03-09T00:00:00Z", "advisory" : "RHSA-2021:0774", "cpe" : "cpe:/a:redhat:rhel_eus:8.2::nfv", "package" : "kernel-rt-0:4.18.0-193.46.1.rt13.96.el8_2" }, { "product_name" : "Red Hat Enterprise Linux 8.2 Extended Update Support", "release_date" : "2021-03-09T00:00:00Z", "advisory" : "RHSA-2021:0763", "cpe" : "cpe:/o:redhat:rhel_eus:8.2", "package" : "kpatch-patch" }, { "product_name" : "Red Hat Enterprise Linux 8.2 Extended Update Support", "release_date" : "2021-03-09T00:00:00Z", "advisory" : "RHSA-2021:0765", "cpe" : "cpe:/o:redhat:rhel_eus:8.2", "package" : "kernel-0:4.18.0-193.46.1.el8_2" }, { "product_name" : "Red Hat Virtualization 4.2 for Red Hat Enterprise Linux 7.6 EUS", "release_date" : "2021-03-16T00:00:00Z", "advisory" : "RHSA-2021:0878", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "kernel-0:3.10.0-957.70.1.el7" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2020-29661\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-29661" ], "name" : "CVE-2020-29661", "mitigation" : { "value" : "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update as soon as possible.", "lang" : "en:us" }, "csaw" : false }