Security Advisory

CVE-2020-10942

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-24 21:03:52
Last updated 2024-08-04 11:21:14
Assigner mitre
State PUBLISHED

Description

In the Linux kernel before 5.5.8, get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow attackers to trigger kernel stack corruption via crafted system calls.