CVE-2020-24394
First published: Fri Jun 05 2020(Updated: )
A vulnerability was found in NFSv4.2 in the Linux kernel, where a server fails to apply umask correctly when creating a new object on filesystem without ACL support (for example, ext4 with the "noacl" mount option). This flaw could allow a local attacker with a user privilege to a kernel information leak problem. References: <a href="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962254">https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962254</a> <a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=22cf8419f1319ff87ec759d0ebdff4cbafaee832">https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=22cf8419f1319ff87ec759d0ebdff4cbafaee832</a>
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:3.10.0-1160.11.1.rt56.1145.el7 | 0:3.10.0-1160.11.1.rt56.1145.el7 |
| redhat/kernel | <0:3.10.0-1160.11.1.el7 | 0:3.10.0-1160.11.1.el7 |
| redhat/kernel | <0:3.10.0-693.82.1.el7 | 0:3.10.0-693.82.1.el7 |
| redhat/kernel | <0:3.10.0-957.70.1.el7 | 0:3.10.0-957.70.1.el7 |
| redhat/kernel | <0:3.10.0-1062.45.1.el7 | 0:3.10.0-1062.45.1.el7 |
| redhat/kernel-rt | <0:4.18.0-305.rt7.72.el8 | 0:4.18.0-305.rt7.72.el8 |
| redhat/kernel | <0:4.18.0-305.el8 | 0:4.18.0-305.el8 |
| Linux Linux kernel | <5.7.8 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =20.04 | |
| openSUSE Leap | =15.1 | |
| Oracle SD-WAN Edge | =8.2 | |
| Starwindsoftware Starwind Virtual San Vsphere | =v8-build12533 | |
| Starwindsoftware Starwind Virtual San Vsphere | =v8-build12658 | |
| Starwindsoftware Starwind Virtual San Vsphere | =v8-build12859 | |
| Starwindsoftware Starwind Virtual San Vsphere | =v8-build13170 | |
| Starwindsoftware Starwind Virtual San Vsphere | =v8-build13586 | |
| Starwindsoftware Starwind Virtual San Vsphere | =v8-build13861 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.106-3 6.1.112-1 6.11.4-1 6.11.5-1 |
Remedy
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-24394 https://nvd.nist.gov/vuln/detail/CVE-2020-24394
- https://bugzilla.redhat.com/show_bug.cgi?id=1869141
- https://access.redhat.com/errata/RHSA-2020:5441
- https://access.redhat.com/errata/RHSA-2020:5437
- https://access.redhat.com/errata/RHSA-2021:0760
- https://access.redhat.com/errata/RHSA-2021:0878
- https://access.redhat.com/errata/RHSA-2021:0526
- https://access.redhat.com/errata/RHSA-2021:1739
- https://access.redhat.com/errata/RHSA-2021:1578
- https://access.redhat.com/security/cve/cve-2020-24394
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962254
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.7.8
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=22cf8419f1319ff87ec759d0ebdff4cbafaee832
- https://usn.ubuntu.com/4465-1/
- http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00007.html
- https://security.netapp.com/advisory/ntap-20200904-0003/
- https://usn.ubuntu.com/4483-1/
- https://usn.ubuntu.com/4485-1/
- https://www.oracle.com/security-alerts/cpuApr2021.html
- https://www.starwindsoftware.com/security/sw-20210325-0004/
- https://launchpad.net/bugs/cve/CVE-2020-24394
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1869153
- https://git.kernel.org/linus/22cf8419f1319ff87ec759d0ebdff4cbafaee832
- https://security-tracker.debian.org/tracker/CVE-2020-24394
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24394
- https://nvd.nist.gov/vuln/detail/CVE-2020-24394
- https://ubuntu.com/security/CVE-2020-24394
Parent vulnerabilities
(Appears in the following advisories)
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/severity
- agent/weakness
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-24394
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/remedy
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/security-tracker-debian
- source/Debian
- package-manager/redhat
- vendor/linux
- canonical/linux linux kernel
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/20.04
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/15.1
- vendor/oracle
- canonical/oracle sd-wan edge
- version/oracle sd-wan edge/8.2
- vendor/starwindsoftware
- canonical/starwindsoftware starwind virtual san vsphere
- version/starwindsoftware starwind virtual san vsphere/v8-build12533
- version/starwindsoftware starwind virtual san vsphere/v8-build12658
- version/starwindsoftware starwind virtual san vsphere/v8-build12859
- version/starwindsoftware starwind virtual san vsphere/v8-build13170
- version/starwindsoftware starwind virtual san vsphere/v8-build13586
- version/starwindsoftware starwind virtual san vsphere/v8-build13861
- package-manager/debian