CVE-2020-8832
unknown
CVSS v3
—
CVSS v2
—
VIR risk
—
Description
The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 ("The Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.") was discovered to be incomplete, meaning that in versions of the kernel before 4.15.0-91.92, an attacker could use this vulnerability to expose sensitive information.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2020-8832
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2020-8832.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | fixed | 4.16.5-1 |
| debian | bullseye | fixed | 4.16.5-1 |
| debian | forky | fixed | 4.16.5-1 |
| debian | sid | fixed | 4.16.5-1 |
| debian | trixie | fixed | 4.16.5-1 |
References
Verify integrity in audit chain (admin only). AS-IS.