A flaw was found in the HDLC_PPP module of the Linux kernel in versions before 5.9-rc7. Memory corruption and a read overflow is caused by improper input validation in the ppp_cp_parse_cr function which can cause the system to crash or cause a denial of service. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
|
Information
Published : 2020-10-06 07:15
Updated : 2022-10-25 09:55
NVD link : CVE-2020-25643
Mitre link : CVE-2020-25643
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
netapp
- h410c_firmware
- h410c
redhat
- enterprise_linux
linux
- linux_kernel
opensuse
- leap
debian
- debian_linux
starwindsoftware
- starwind_virtual_san