CVE-2020-6096

Priority
Description
An exploitable signed comparison vulnerability exists in the ARMv7 memcpy()
implementation of GNU glibc 2.30.9000. Calling memcpy() (on ARMv7 targets
that utilize the GNU glibc implementation) with a negative value for the
'num' parameter results in a signed comparison vulnerability. If an
attacker underflows the 'num' parameter to memcpy(), this vulnerability
could lead to undefined behavior such as writing to out-of-bounds memory
and potentially remote code execution. Furthermore, this memcpy()
implementation allows for program execution to continue in scenarios where
a segmentation fault or crash should have occurred. The dangers occur in
that subsequent execution and iterations of this code will be executed with
this corrupted data.
References
Bugs
Notes
Package
Upstream:needs-triage
Ubuntu 18.04 LTS:DNE
Ubuntu 20.04 LTS:DNE
Ubuntu 21.10:DNE
Ubuntu 22.04 LTS:DNE
Ubuntu 14.04 ESM:needed
Patches:
Package
Source: glibc (LP Ubuntu Debian)
Upstream:pending (2.32)
Ubuntu 18.04 LTS:released (2.27-3ubuntu1.5)
Ubuntu 20.04 LTS:released (2.31-0ubuntu9.7)
Ubuntu 21.10:released (2.32-0ubuntu3)
Ubuntu 16.04 ESM:released (2.23-0ubuntu11.3)
Ubuntu 22.04 LTS:released (2.32-0ubuntu3)
Ubuntu 14.04 ESM:DNE
Patches:
Upstream:https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=eec0f4218cda936a6ab8f543e90b96b196df3fc2 (test)
Upstream:https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=eca1b233322914d9013f3ee4aabecaadc9245abd (test)
Upstream:https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=79a4fa341b8a89cb03f84564fd72abaa1a2db394
Upstream:https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=beea361050728138b82c57dda0c4810402d342b9
Upstream:https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=7b5f02dc2a9278cd068a58a3db3644e24707be49 (test)
More Information

Updated: 2022-04-25 00:50:43 UTC (commit ecc1009cb19540b950de59270950018900f37f15)