Candidate: CVE-2020-0432
PublicDate: 2020-09-17 19:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0432
 https://git.kernel.org/linus/4d1356ac12f4d5180d0df345d85ff0ee42b89c72
 https://source.android.com/security/bulletin/pixel/2020-09-01
Description:
 In skb_to_mamac of networking.c, there is a possible out of bounds write
 due to an integer overflow. This could lead to local escalation of
 privilege with no additional execution privileges needed. User interaction
 is not needed for exploitation.Product: AndroidVersions: Android
 kernelAndroid ID: A-143560807
Ubuntu-Description:
Notes:
 sbeattie| staging driver, need to confirm it is enabled
Mitigation:
Bugs:
Priority: medium
Discovered-by: Greg Kroah-Hartman
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [7.8 HIGH]

Patches_linux:
 break-fix: - 4d1356ac12f4d5180d0df345d85ff0ee42b89c72
upstream_linux: released (5.6~rc1)
precise/esm_linux: ignored (was needs-triage ESM criteria)
trusty_linux: ignored (out of standard support)
trusty/esm_linux: ignored (was needs-triage ESM criteria)
xenial_linux: released (4.4.0-177.207)
esm-infra/xenial_linux: released (4.4.0-177.207)
bionic_linux: released (4.15.0-96.97)
focal_linux: not-affected (5.4.0-18.22)
devel_linux: not-affected (5.4.0-26.30)

Patches_linux-hwe:
upstream_linux-hwe: released (5.6~rc1)
precise/esm_linux-hwe: DNE
trusty_linux-hwe: DNE
trusty/esm_linux-hwe: DNE
xenial_linux-hwe: released (4.15.0-96.97~16.04.1)
esm-infra/xenial_linux-hwe: released (4.15.0-96.97~16.04.1)
bionic_linux-hwe: released (5.3.0-46.38~18.04.1)
focal_linux-hwe: DNE
devel_linux-hwe: DNE

Patches_linux-hwe-5.4:
upstream_linux-hwe-5.4: released (5.6~rc1)
precise/esm_linux-hwe-5.4: DNE
trusty_linux-hwe-5.4: DNE
trusty/esm_linux-hwe-5.4: DNE
xenial_linux-hwe-5.4: DNE
bionic_linux-hwe-5.4: not-affected (5.4.0-37.41~18.04.1)
focal_linux-hwe-5.4: DNE
devel_linux-hwe-5.4: DNE

Patches_linux-hwe-edge:
upstream_linux-hwe-edge: released (5.6~rc1)
precise/esm_linux-hwe-edge: DNE
trusty_linux-hwe-edge: DNE
trusty/esm_linux-hwe-edge: DNE
xenial_linux-hwe-edge: ignored (was needs-triage now end-of-life)
esm-infra/xenial_linux-hwe-edge: ignored (was needs-triage now end-of-life)
bionic_linux-hwe-edge: ignored (was needs-triage now end-of-life)
focal_linux-hwe-edge: DNE
devel_linux-hwe-edge: DNE

Patches_linux-lts-trusty:
upstream_linux-lts-trusty: released (5.6~rc1)
precise/esm_linux-lts-trusty: ignored (was needs-triage ESM criteria)
trusty_linux-lts-trusty: DNE
trusty/esm_linux-lts-trusty: DNE
xenial_linux-lts-trusty: DNE
bionic_linux-lts-trusty: DNE
focal_linux-lts-trusty: DNE
devel_linux-lts-trusty: DNE

Patches_linux-lts-xenial:
upstream_linux-lts-xenial: released (5.6~rc1)
precise/esm_linux-lts-xenial: DNE
trusty_linux-lts-xenial: ignored (out of standard support)
trusty/esm_linux-lts-xenial: ignored (was needs-triage ESM criteria)
xenial_linux-lts-xenial: DNE
bionic_linux-lts-xenial: DNE
focal_linux-lts-xenial: DNE
devel_linux-lts-xenial: DNE

Patches_linux-kvm:
upstream_linux-kvm: released (5.6~rc1)
precise/esm_linux-kvm: DNE
trusty_linux-kvm: DNE
trusty/esm_linux-kvm: DNE
xenial_linux-kvm: released (4.4.0-1069.76)
esm-infra/xenial_linux-kvm: released (4.4.0-1069.76)
bionic_linux-kvm: released (4.15.0-1058.59)
focal_linux-kvm: not-affected (5.4.0-1004.4)
devel_linux-kvm: not-affected (5.4.0-1009.9)

Patches_linux-aws:
upstream_linux-aws: released (5.6~rc1)
precise/esm_linux-aws: DNE
trusty_linux-aws: ignored (out of standard support)
trusty/esm_linux-aws: ignored (was needs-triage ESM criteria)
xenial_linux-aws: released (4.4.0-1105.116)
esm-infra/xenial_linux-aws: released (4.4.0-1105.116)
bionic_linux-aws: released (4.15.0-1065.69)
focal_linux-aws: not-affected (5.4.0-1005.5)
devel_linux-aws: not-affected (5.4.0-1009.9)

Patches_linux-aws-5.0:
upstream_linux-aws-5.0: released (5.6~rc1)
precise/esm_linux-aws-5.0: DNE
trusty_linux-aws-5.0: DNE
trusty/esm_linux-aws-5.0: DNE
xenial_linux-aws-5.0: DNE
bionic_linux-aws-5.0: ignored (was needs-triage now end-of-life)
focal_linux-aws-5.0: DNE
devel_linux-aws-5.0: DNE

Patches_linux-aws-5.3:
upstream_linux-aws-5.3: released (5.6~rc1)
precise/esm_linux-aws-5.3: DNE
trusty_linux-aws-5.3: DNE
trusty/esm_linux-aws-5.3: DNE
xenial_linux-aws-5.3: DNE
bionic_linux-aws-5.3: ignored (was needs-triage now end-of-life)
focal_linux-aws-5.3: DNE
devel_linux-aws-5.3: DNE

Patches_linux-aws-5.4:
upstream_linux-aws-5.4: released (5.6~rc1)
precise/esm_linux-aws-5.4: DNE
trusty_linux-aws-5.4: DNE
trusty/esm_linux-aws-5.4: DNE
xenial_linux-aws-5.4: DNE
bionic_linux-aws-5.4: not-affected (5.4.0-1018.18~18.04.1)
focal_linux-aws-5.4: DNE
devel_linux-aws-5.4: DNE

Patches_linux-aws-hwe:
upstream_linux-aws-hwe: released (5.6~rc1)
precise/esm_linux-aws-hwe: DNE
trusty_linux-aws-hwe: DNE
trusty/esm_linux-aws-hwe: DNE
xenial_linux-aws-hwe: released (4.15.0-1065.69~16.04.1)
esm-infra/xenial_linux-aws-hwe: released (4.15.0-1065.69~16.04.1)
bionic_linux-aws-hwe: DNE
focal_linux-aws-hwe: DNE
devel_linux-aws-hwe: DNE

Patches_linux-azure:
upstream_linux-azure: released (5.6~rc1)
precise/esm_linux-azure: DNE
trusty_linux-azure: ignored (out of standard support)
trusty/esm_linux-azure: ignored (was needs-triage ESM criteria)
xenial_linux-azure: released (4.15.0-1077.82)
esm-infra/xenial_linux-azure: released (4.15.0-1077.82)
bionic_linux-azure: ignored (was needs-triage now end-of-life)
focal_linux-azure: not-affected (5.4.0-1006.6)
devel_linux-azure: not-affected (5.4.0-1010.10)

Patches_linux-azure-4.15:
upstream_linux-azure-4.15: released (5.6~rc1)
precise/esm_linux-azure-4.15: DNE
trusty_linux-azure-4.15: DNE
trusty/esm_linux-azure-4.15: DNE
xenial_linux-azure-4.15: DNE
bionic_linux-azure-4.15: not-affected (4.15.0-1082.92)
focal_linux-azure-4.15: DNE
devel_linux-azure-4.15: DNE

Patches_linux-azure-5.3:
upstream_linux-azure-5.3: released (5.6~rc1)
precise/esm_linux-azure-5.3: DNE
trusty_linux-azure-5.3: DNE
trusty/esm_linux-azure-5.3: DNE
xenial_linux-azure-5.3: DNE
bionic_linux-azure-5.3: ignored (was needs-triage now end-of-life)
focal_linux-azure-5.3: DNE
devel_linux-azure-5.3: DNE

Patches_linux-azure-5.4:
upstream_linux-azure-5.4: released (5.6~rc1)
precise/esm_linux-azure-5.4: DNE
trusty_linux-azure-5.4: DNE
trusty/esm_linux-azure-5.4: DNE
xenial_linux-azure-5.4: DNE
bionic_linux-azure-5.4: not-affected (5.4.0-1020.20~18.04.1)
focal_linux-azure-5.4: DNE
devel_linux-azure-5.4: DNE

Patches_linux-azure-edge:
upstream_linux-azure-edge: released (5.6~rc1)
precise/esm_linux-azure-edge: DNE
trusty_linux-azure-edge: DNE
trusty/esm_linux-azure-edge: DNE
xenial_linux-azure-edge: DNE
bionic_linux-azure-edge: ignored (was needs-triage now end-of-life)
focal_linux-azure-edge: DNE
devel_linux-azure-edge: DNE

Patches_linux-gcp:
upstream_linux-gcp: released (5.6~rc1)
precise/esm_linux-gcp: DNE
trusty_linux-gcp: DNE
trusty/esm_linux-gcp: DNE
xenial_linux-gcp: released (4.15.0-1060.64)
esm-infra/xenial_linux-gcp: released (4.15.0-1060.64)
bionic_linux-gcp: ignored (was needs-triage now end-of-life)
focal_linux-gcp: not-affected (5.4.0-1005.5)
devel_linux-gcp: not-affected (5.4.0-1009.9)

Patches_linux-gcp-4.15:
upstream_linux-gcp-4.15: released (5.6~rc1)
precise/esm_linux-gcp-4.15: DNE
trusty_linux-gcp-4.15: DNE
trusty/esm_linux-gcp-4.15: DNE
xenial_linux-gcp-4.15: DNE
bionic_linux-gcp-4.15: not-affected (4.15.0-1071.81)
focal_linux-gcp-4.15: DNE
devel_linux-gcp-4.15: DNE

Patches_linux-gcp-5.3:
upstream_linux-gcp-5.3: released (5.6~rc1)
precise/esm_linux-gcp-5.3: DNE
trusty_linux-gcp-5.3: DNE
trusty/esm_linux-gcp-5.3: DNE
xenial_linux-gcp-5.3: DNE
bionic_linux-gcp-5.3: ignored (was needs-triage now end-of-life)
focal_linux-gcp-5.3: DNE
devel_linux-gcp-5.3: DNE

Patches_linux-gcp-5.4:
upstream_linux-gcp-5.4: released (5.6~rc1)
precise/esm_linux-gcp-5.4: DNE
trusty_linux-gcp-5.4: DNE
trusty/esm_linux-gcp-5.4: DNE
xenial_linux-gcp-5.4: DNE
bionic_linux-gcp-5.4: not-affected (5.4.0-1019.19~18.04.2)
focal_linux-gcp-5.4: DNE
devel_linux-gcp-5.4: DNE

Patches_linux-gcp-edge:
upstream_linux-gcp-edge: released (5.6~rc1)
precise/esm_linux-gcp-edge: DNE
trusty_linux-gcp-edge: DNE
trusty/esm_linux-gcp-edge: DNE
xenial_linux-gcp-edge: DNE
bionic_linux-gcp-edge: ignored (was needs-triage now end-of-life)
focal_linux-gcp-edge: DNE
devel_linux-gcp-edge: DNE

Patches_linux-gke-4.15:
upstream_linux-gke-4.15: released (5.6~rc1)
precise/esm_linux-gke-4.15: DNE
trusty_linux-gke-4.15: DNE
trusty/esm_linux-gke-4.15: DNE
xenial_linux-gke-4.15: DNE
bionic_linux-gke-4.15: released (4.15.0-1057.60)
focal_linux-gke-4.15: DNE
devel_linux-gke-4.15: DNE

Patches_linux-gke-5.0:
upstream_linux-gke-5.0: released (5.6~rc1)
precise/esm_linux-gke-5.0: DNE
trusty_linux-gke-5.0: DNE
trusty/esm_linux-gke-5.0: DNE
xenial_linux-gke-5.0: DNE
bionic_linux-gke-5.0: released (5.0.0-1033.34)
focal_linux-gke-5.0: DNE
devel_linux-gke-5.0: DNE

Patches_linux-gke-5.3:
upstream_linux-gke-5.3: released (5.6~rc1)
precise/esm_linux-gke-5.3: DNE
trusty_linux-gke-5.3: DNE
trusty/esm_linux-gke-5.3: DNE
xenial_linux-gke-5.3: DNE
bionic_linux-gke-5.3: released (5.3.0-1017.18~18.04.1)
focal_linux-gke-5.3: DNE
devel_linux-gke-5.3: DNE

Patches_linux-oracle:
upstream_linux-oracle: released (5.6~rc1)
precise/esm_linux-oracle: DNE
trusty_linux-oracle: DNE
trusty/esm_linux-oracle: DNE
xenial_linux-oracle: released (4.15.0-1037.41~16.04.1)
esm-infra/xenial_linux-oracle: released (4.15.0-1037.41~16.04.1)
bionic_linux-oracle: released (4.15.0-1037.41)
focal_linux-oracle: not-affected (5.4.0-1005.5)
devel_linux-oracle: not-affected (5.4.0-1009.9)

Patches_linux-oracle-5.0:
upstream_linux-oracle-5.0: released (5.6~rc1)
precise/esm_linux-oracle-5.0: DNE
trusty_linux-oracle-5.0: DNE
trusty/esm_linux-oracle-5.0: DNE
xenial_linux-oracle-5.0: DNE
bionic_linux-oracle-5.0: ignored (was needs-triage now end-of-life)
focal_linux-oracle-5.0: DNE
devel_linux-oracle-5.0: DNE

Patches_linux-oracle-5.3:
upstream_linux-oracle-5.3: released (5.6~rc1)
precise/esm_linux-oracle-5.3: DNE
trusty_linux-oracle-5.3: DNE
trusty/esm_linux-oracle-5.3: DNE
xenial_linux-oracle-5.3: DNE
bionic_linux-oracle-5.3: ignored (was needs-triage now end-of-life)
focal_linux-oracle-5.3: DNE
devel_linux-oracle-5.3: DNE

Patches_linux-oracle-5.4:
upstream_linux-oracle-5.4: released (5.6~rc1)
precise/esm_linux-oracle-5.4: DNE
trusty_linux-oracle-5.4: DNE
trusty/esm_linux-oracle-5.4: DNE
xenial_linux-oracle-5.4: DNE
bionic_linux-oracle-5.4: not-affected (5.4.0-1019.19~18.04.1)
focal_linux-oracle-5.4: DNE
devel_linux-oracle-5.4: DNE

Patches_linux-oem:
upstream_linux-oem: released (5.6~rc1)
precise/esm_linux-oem: DNE
trusty_linux-oem: DNE
trusty/esm_linux-oem: DNE
xenial_linux-oem: ignored (was needs-triage now end-of-life)
bionic_linux-oem: released (4.15.0-1079.89)
focal_linux-oem: DNE
devel_linux-oem: DNE

Patches_linux-oem-5.6:
upstream_linux-oem-5.6: released (5.6~rc1)
precise/esm_linux-oem-5.6: DNE
trusty_linux-oem-5.6: DNE
trusty/esm_linux-oem-5.6: DNE
xenial_linux-oem-5.6: DNE
bionic_linux-oem-5.6: DNE
focal_linux-oem-5.6: not-affected (5.6.0-1007.7)
devel_linux-oem-5.6: not-affected (5.6.0-1007.7)

Patches_linux-oem-osp1:
upstream_linux-oem-osp1: released (5.6~rc1)
precise/esm_linux-oem-osp1: DNE
trusty_linux-oem-osp1: DNE
trusty/esm_linux-oem-osp1: DNE
xenial_linux-oem-osp1: DNE
bionic_linux-oem-osp1: released (5.0.0-1047.52)
focal_linux-oem-osp1: DNE
devel_linux-oem-osp1: DNE

Patches_linux-raspi:
upstream_linux-raspi: released (5.6~rc1)
precise/esm_linux-raspi: DNE
trusty_linux-raspi: DNE
trusty/esm_linux-raspi: DNE
xenial_linux-raspi: DNE
bionic_linux-raspi: DNE
focal_linux-raspi: not-affected (5.4.0-1007.7)
devel_linux-raspi: not-affected (5.4.0-1008.8)

Patches_linux-raspi2:
upstream_linux-raspi2: released (5.6~rc1)
precise/esm_linux-raspi2: DNE
trusty_linux-raspi2: DNE
trusty/esm_linux-raspi2: DNE
xenial_linux-raspi2: released (4.4.0-1131.140)
bionic_linux-raspi2: released (4.15.0-1060.64)
focal_linux-raspi2: ignored (was needs-triage now end-of-life)
devel_linux-raspi2: DNE

Patches_linux-raspi2-5.3:
upstream_linux-raspi2-5.3: released (5.6~rc1)
precise/esm_linux-raspi2-5.3: DNE
trusty_linux-raspi2-5.3: DNE
trusty/esm_linux-raspi2-5.3: DNE
xenial_linux-raspi2-5.3: DNE
bionic_linux-raspi2-5.3: released (5.3.0-1022.24~18.04.1)
focal_linux-raspi2-5.3: DNE
devel_linux-raspi2-5.3: DNE

Patches_linux-raspi-5.4:
upstream_linux-raspi-5.4: released (5.6~rc1)
precise/esm_linux-raspi-5.4: DNE
trusty_linux-raspi-5.4: DNE
trusty/esm_linux-raspi-5.4: DNE
xenial_linux-raspi-5.4: DNE
bionic_linux-raspi-5.4: not-affected (5.4.0-1013.13~18.04.1)
focal_linux-raspi-5.4: DNE
devel_linux-raspi-5.4: DNE

Patches_linux-riscv:
upstream_linux-riscv: released (5.6~rc1)
precise/esm_linux-riscv: DNE
trusty_linux-riscv: DNE
trusty/esm_linux-riscv: DNE
xenial_linux-riscv: DNE
bionic_linux-riscv: DNE
focal_linux-riscv: not-affected (5.4.0-24.28)
devel_linux-riscv: not-affected (5.4.0-24.28)

Patches_linux-snapdragon:
upstream_linux-snapdragon: released (5.6~rc1)
precise/esm_linux-snapdragon: DNE
trusty_linux-snapdragon: DNE
trusty/esm_linux-snapdragon: DNE
xenial_linux-snapdragon: released (4.4.0-1135.143)
bionic_linux-snapdragon: released (4.15.0-1076.83)
focal_linux-snapdragon: DNE
devel_linux-snapdragon: DNE