CVE-2020-14385
First published: Tue Aug 25 2020(Updated: )
A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata validator in XFS can cause an inode with a valid, user-creatable extended attribute to be flagged as corrupt. This can lead to the filesystem being shutdown, or otherwise rendered inaccessible until it is remounted, leading to a denial of service. The highest threat from this vulnerability is to system availability.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:3.10.0-1160.11.1.rt56.1145.el7 | 0:3.10.0-1160.11.1.rt56.1145.el7 |
| redhat/kernel | <0:3.10.0-1160.11.1.el7 | 0:3.10.0-1160.11.1.el7 |
| redhat/kernel-rt | <0:4.18.0-193.28.1.rt13.77.el8_2 | 0:4.18.0-193.28.1.rt13.77.el8_2 |
| redhat/kernel | <0:4.18.0-193.28.1.el8_2 | 0:4.18.0-193.28.1.el8_2 |
| redhat/kernel | <0:4.18.0-80.31.1.el8_0 | 0:4.18.0-80.31.1.el8_0 |
| redhat/kernel | <0:4.18.0-147.32.1.el8_1 | 0:4.18.0-147.32.1.el8_1 |
| redhat/Linux kernel | <5.9 | 5.9 |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.16-1 | |
| Linux kernel | <5.9.0 | |
| Linux kernel | =5.9.0 | |
| Linux kernel | =5.9.0-rc1 | |
| Linux kernel | =5.9.0-rc2 | |
| Linux kernel | =5.9.0-rc3 | |
| Ubuntu Linux | =18.04 | |
| Ubuntu Linux | =20.04 | |
| Debian | =9.0 | |
| Linux Kernel | <5.9.0 | |
| Linux Kernel | =5.9.0 | |
| Linux Kernel | =5.9.0-rc1 | |
| Linux Kernel | =5.9.0-rc2 | |
| Linux Kernel | =5.9.0-rc3 | |
| Ubuntu | =18.04 | |
| Ubuntu | =20.04 |
Remedy
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-14385 https://nvd.nist.gov/vuln/detail/CVE-2020-14385 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f4020438fab05364018c91f7e02ebdd192085933
- https://bugzilla.redhat.com/show_bug.cgi?id=1874800
- https://access.redhat.com/errata/RHSA-2020:5441
- https://access.redhat.com/errata/RHSA-2020:5050
- https://access.redhat.com/errata/RHSA-2020:5437
- https://access.redhat.com/errata/RHSA-2020:4289
- https://access.redhat.com/errata/RHSA-2020:4286
- https://access.redhat.com/errata/RHSA-2020:4331
- https://access.redhat.com/errata/RHSA-2020:5199
- https://access.redhat.com/errata/RHSA-2020:4287
- https://access.redhat.com/errata/RHSA-2020:4332
- https://access.redhat.com/security/cve/cve-2020-14385
- http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00001.html
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14385
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f4020438fab05364018c91f7e02ebdd192085933
- https://lists.debian.org/debian-lts-announce/2020/09/msg00025.html
- https://usn.ubuntu.com/4576-1/
- https://launchpad.net/bugs/cve/CVE-2020-14385
- https://lore.kernel.org/linux-xfs/63722af5-2d8d-2455-17ee-988defd3126f@redhat.com/
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1874811
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1874800#c24
- https://git.kernel.org/linus/f4020438fab05364018c91f7e02ebdd192085933
- https://security-tracker.debian.org/tracker/CVE-2020-14385
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14385
- https://nvd.nist.gov/vuln/detail/CVE-2020-14385
- https://ubuntu.com/security/CVE-2020-14385
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is the severity of CVE-2020-14385?
CVE-2020-14385 is classified as a high severity vulnerability due to its potential to render the filesystem inaccessible.
How do I fix CVE-2020-14385?
To fix CVE-2020-14385, update to the appropriate kernel version as specified in the vulnerability details.
Which systems are affected by CVE-2020-14385?
CVE-2020-14385 affects various versions of the Linux kernel prior to 5.9-rc4, including Red Hat and Debian based systems.
What is the impact of CVE-2020-14385?
The impact of CVE-2020-14385 includes potential filesystem shutdowns or making the filesystem inaccessible.
Is CVE-2020-14385 remotely exploitable?
CVE-2020-14385 is not specifically identified as remotely exploitable; it typically requires local user privileges to exploit.
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/weakness
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-14385
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/remedy
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- collector/usn-cve
- source/Ubuntu
- agent/description
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/nvd-cve
- source/NVD
- package-manager/redhat
- package-manager/debian
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.9.0
- version/linux kernel/5.9.0-rc1
- version/linux kernel/5.9.0-rc2
- version/linux kernel/5.9.0-rc3
- vendor/canonical
- canonical/ubuntu linux
- version/ubuntu linux/18.04
- version/ubuntu linux/20.04
- vendor/debian
- canonical/debian
- version/debian/9.0
- canonical/ubuntu
- version/ubuntu/18.04
- version/ubuntu/20.04