CVE-2020-14305
First published: Tue Jun 09 2020(Updated: )
An out-of-bounds memory write flaw was found in how the Linux kernel’s Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port 1720. This flaw allows an unauthenticated remote user to crash the system, causing a denial of service. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:3.10.0-1160.rt56.1131.el7 | 0:3.10.0-1160.rt56.1131.el7 |
| redhat/kernel | <0:3.10.0-1160.el7 | 0:3.10.0-1160.el7 |
| Linux Linux kernel | <=4.11.12 | |
| Linux Linux kernel | =4.12 | |
| Netapp Cloud Backup | ||
| Netapp A250 Firmware | ||
| Netapp A250 | ||
| Netapp Fas 500f Firmware | ||
| Netapp Fas 500f | ||
| Netapp Aff 500f Firmware | ||
| Netapp Aff 500f | ||
| Netapp Solidfire Baseboard Management Controller Firmware | ||
| Netapp Solidfire Baseboard Management Controller | ||
| redhat/kernel | <4.12 | 4.12 |
Remedy
A mitigation to this flaw would be to no longer use IPV6 on affected hardware until the kernel has been updated or to disable Voice Over IP H.323 module. Existing systems that have h323-conntrack-nat kernel module loaded will need to unload the "nf_conntrack_h323" kernel module and blacklist it ( See https://access.redhat.com/solutions/41278 for a guide on how to blacklist modules).
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-14305 https://nvd.nist.gov/vuln/detail/CVE-2020-14305 https://bugs.openvz.org/browse/OVZ-7188 https://patchwork.ozlabs.org/project/netfilter-devel/patch/c2385b5c-309c-cc64-2e10-a0ef62897502@virtuozzo.com/
- https://bugzilla.redhat.com/show_bug.cgi?id=1850716
- https://access.redhat.com/errata/RHSA-2020:4062
- https://access.redhat.com/errata/RHSA-2020:4060
- https://access.redhat.com/security/cve/cve-2020-14305
- https://bugs.openvz.org/browse/OVZ-7188
- https://patchwork.ozlabs.org/project/netfilter-devel/patch/c2385b5c-309c-cc64-2e10-a0ef62897502@virtuozzo.com/
- https://security.netapp.com/advisory/ntap-20201210-0004/
- https://access.redhat.com/solutions/41278
- https://android.googlesource.com/kernel/common/+/396ba2fc4f27ef6c44bbc0098bfddf4da76dc4c9
- https://source.android.com/docs/security/bulletin/2021-06-01 (Advisory)
- https://patchwork.ozlabs.org/project/netfilter-devel/patch/c2385b5c-309c-cc64-2e10-a0ef62897502%40virtuozzo.com/
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup
- agent/author
- agent/severity
- agent/references
- agent/remedy
- agent/weakness
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-14305
- agent/event
- agent/softwarecombine
- agent/tags
- collector/android-source
- source/Android
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- package-manager/redhat
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/4.11.12
- version/linux linux kernel/4.12
- vendor/netapp
- canonical/netapp cloud backup
- canonical/netapp a250 firmware
- canonical/netapp a250
- canonical/netapp fas 500f firmware
- canonical/netapp fas 500f
- canonical/netapp aff 500f firmware
- canonical/netapp aff 500f
- canonical/netapp solidfire baseboard management controller firmware
- canonical/netapp solidfire baseboard management controller
- vendor/google
- canonical/google android