← volver
CVE-2020-26088

CVE-2020-26088

EPSS 0.4%
A missing CAP_NET_RAW check in NFC socket creation in net/nfc/rawsock.c in the Linux kernel before 5.8.2 could be used by local attackers to create raw sockets, bypassing security mechanisms, aka CID-26896f01467a.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-10/msg00021.htmlhttps://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.8.2https://github.com/torvalds/linux/commit/26896f01467a28651f7a536143fe5ac8449d4041https://lists.debian.org/debian-lts-announce/2020/09/msg00025.htmlhttps://lists.debian.org/debian-lts-announce/2020/10/msg00032.htmlhttps://lists.debian.org/debian-lts-announce/2020/10/msg00034.htmlhttps://usn.ubuntu.com/4578-1/