Vulnerabilities

CVE-2020-25212

by Fred · 09/09/2020

A TOCTOU mismatch in the NFS client code in the Linux kernel before 5.8.3 could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c, aka CID-b4487b935452.

Date published : 2020-09-09

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.8.3

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b4487b93545214a9db8cbf32e86411677b0cca21

Similar

Tags: Cybersecurity Alert