← voltar
CVE-2020-26088

CVE-2020-26088

EPSS 0.4%
A missing CAP_NET_RAW check in NFC socket creation in net/nfc/rawsock.c in the Linux kernel before 5.8.2 could be used by local attackers to create raw sockets, bypassing security mechanisms, aka CID-26896f01467a.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-10/msg00021.htmlhttps://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.8.2https://github.com/torvalds/linux/commit/26896f01467a28651f7a536143fe5ac8449d4041https://lists.debian.org/debian-lts-announce/2020/09/msg00025.htmlhttps://lists.debian.org/debian-lts-announce/2020/10/msg00032.htmlhttps://lists.debian.org/debian-lts-announce/2020/10/msg00034.htmlhttps://usn.ubuntu.com/4578-1/