get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting (caused by gate page mishandling) of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit process that can use ptrace() or process_vm_readv(), aka CID-9fa2dd946743.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HLinux Kernel
OSLinux5.7.0 – 5.8.7 (bez)Netapp Cloud Backup
APPNetappwszystkie wersjeNetapp Hci Compute Node
HWNetappwszystkie wersjeNetapp Solidfire Baseboard Management Controller
HWNetappwszystkie wersjeNetapp Solidfire\, Enterprise Sds \& Hci Storage Node
APPNetappwszystkie wersjeNetapp Solidfire \& Hci Management Node
APPNetappwszystkie wersje
Related vulnerabilities
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP
Apache Tomcat: Path Equivalence prowadzący do RCE i ujawnienia danych
IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on t...
VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-s...