First Last Prev Next    This bug is not in your last search results.
Bug 1176719 - (CVE-2020-0435) VUL-1: CVE-2020-0435: kernel-source: out of bounds write in inline_data_addr of f2fs.h
(CVE-2020-0435)
VUL-1: CVE-2020-0435: kernel-source: out of bounds write in inline_data_addr ...
Status: RESOLVED UPSTREAM
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P4 - Low : Minor
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/267633/
:
Depends on:
Blocks: 1196027
  Show dependency treegraph
 
Reported: 2020-09-18 14:46 UTC by Alexander Bergmann
Modified: 2022-02-16 12:38 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Alexander Bergmann 2020-09-18 14:46:49 UTC 
CVE-2020-0435

In inline_data_addr of f2fs.h, there is a possible out of bounds write due to an
integer overflow. This could lead to local escalation of privilege with System
execution privileges needed. User interaction is not needed for
exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-133762747

Android kernel commit:
https://android.googlesource.com/kernel/common/+/d7d9d29a837358636e12fe09c90a7882b53b2220

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-0435
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0435
https://source.android.com/security/bulletin/pixel/2020-09-01
Comment 1 Takashi Iwai 2020-09-22 11:26:18 UTC 
We don't enable nor support f2fs on all releases, so unaffected.

Reassigned back to security team.
Comment 2 Marcus Meissner 2020-09-24 07:13:57 UTC 
resolved upstream as we do not included f2fs
First Last Prev Next    This bug is not in your last search results.