2239712 – (CVE-2020-36766) CVE-2020-36766 kernel: memory leak in drivers/media/cec/core/cec-api.c

Bug 2239712 (CVE-2020-36766) - CVE-2020-36766 kernel: memory leak in drivers/media/cec/core/cec-api.c

Summary: CVE-2020-36766 kernel: memory leak in drivers/media/cec/core/cec-api.c

Keywords:
Status:	NEW
Alias:	CVE-2020-36766
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	2239820 (view as bug list)
Depends On:	2239715
Blocks:	2239714
TreeView+	depends on / blocked

Reported:	2023-09-19 19:01 UTC by Zack Miele
Modified:	2024-10-12 08:28 UTC (History)
CC List:	48 users (show)
Fixed In Version:	kernel 5.8.6
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description Zack Miele 2023-09-19 19:01:45 UTC

An issue was discovered in the Linux kernel before 5.8.6. drivers/media/cec/core/cec-api.c leaks one byte of kernel memory on specific hardware to unprivileged users, because of directly assigning log_addrs with a hole in the struct.

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.8.6
https://github.com/torvalds/linux/commit/6c42227c3467549ddc65efe99c869021d2f4a570

Comment 5 Rohit Keshri 2023-09-25 12:21:05 UTC

*** Bug 2239820 has been marked as a duplicate of this bug. ***

Note You need to log in before you can comment on or make changes to this bug.

aazores
acaringi
allarkin
bhu
chazlett
chwhite
dbohanno
debarbos
dfreiber
dvlasenk
eaguilar
ebaron
ezulian
hkrzesin
jarod
jburrell
jdenham
jfaracco
jforbes
jkang
jlelli
joe.lawrence
jpallich
jshortt
jstancek
jwyatt
kcarcia
ldoskova
lgoncalv
lzampier
nmurray
pjindal
ptalbert
rkeshri
rogbas
rrobaina
rvrbovsk
rysulliv
scweaver
sfroberg
tglozar
tyberry
vkumar
walters
wcosta
williams
wmealing
ycote