Candidate: CVE-2020-27786
PublicDate: 2020-12-11 05:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27786
 https://www.openwall.com/lists/oss-security/2020/12/01/1
Description:
 A flaw was found in the Linux kernel’s implementation of MIDI, where an
 attacker with a local account and the permissions to issue ioctl commands
 to midi devices could trigger a use-after-free issue. A write to this
 specific memory while freed and before use causes the flow of execution to
 change and possibly allow for memory corruption or privilege escalation.
 The highest threat from this vulnerability is to confidentiality,
 integrity, as well as system availability.
Ubuntu-Description:
Notes:
 cascardo> commit 39675f7a7c7e7702f7d5341f1e0d01db746543a0 would be a pre-req.
Mitigation:
Bugs:
Priority: medium
Discovered-by: ADLab of venustech
Assigned-to: cascardo
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [7.8 HIGH]

Patches_linux:
 break-fix: - c1f6e3c818dd734c30f6a7eeebf232ba2cf3181d
upstream_linux: released (5.7~rc6)
precise/esm_linux: ignored (was needs-triage ESM criteria)
trusty_linux: ignored (out of standard support)
trusty/esm_linux: ignored (was needs-triage ESM criteria)
xenial_linux: released (4.4.0-185.215)
esm-infra/xenial_linux: released (4.4.0-185.215)
bionic_linux: released (4.15.0-109.110)
focal_linux: released (5.4.0-40.44)
groovy_linux: not-affected (5.4.0-42.46)
devel_linux: not-affected (5.8.0-34.37+21.04.1)

Patches_linux-hwe:
upstream_linux-hwe: released (5.7~rc6)
precise/esm_linux-hwe: DNE
trusty_linux-hwe: DNE
trusty/esm_linux-hwe: DNE
xenial_linux-hwe: released (4.15.0-107.108~16.04.1)
esm-infra/xenial_linux-hwe: released (4.15.0-107.108~16.04.1)
bionic_linux-hwe: ignored (replaced by linux-hwe-5.4)
focal_linux-hwe: DNE
groovy_linux-hwe: DNE
devel_linux-hwe: DNE

Patches_linux-hwe-5.4:
upstream_linux-hwe-5.4: released (5.7~rc6)
precise/esm_linux-hwe-5.4: DNE
trusty_linux-hwe-5.4: DNE
trusty/esm_linux-hwe-5.4: DNE
xenial_linux-hwe-5.4: DNE
bionic_linux-hwe-5.4: released (5.4.0-40.44~18.04.1)
focal_linux-hwe-5.4: DNE
groovy_linux-hwe-5.4: DNE
devel_linux-hwe-5.4: DNE

Patches_linux-hwe-edge:
upstream_linux-hwe-edge: released (5.7~rc6)
precise/esm_linux-hwe-edge: DNE
trusty_linux-hwe-edge: DNE
trusty/esm_linux-hwe-edge: DNE
xenial_linux-hwe-edge: ignored (superseded by linux-hwe)
esm-infra/xenial_linux-hwe-edge: ignored (superseded by linux-hwe)
bionic_linux-hwe-edge: ignored (superseded by linux-hwe-5.4)
focal_linux-hwe-edge: DNE
groovy_linux-hwe-edge: DNE
devel_linux-hwe-edge: DNE

Patches_linux-lts-trusty:
upstream_linux-lts-trusty: released (5.7~rc6)
precise/esm_linux-lts-trusty: ignored (was needs-triage ESM criteria)
trusty_linux-lts-trusty: DNE
trusty/esm_linux-lts-trusty: DNE
xenial_linux-lts-trusty: DNE
bionic_linux-lts-trusty: DNE
focal_linux-lts-trusty: DNE
groovy_linux-lts-trusty: DNE
devel_linux-lts-trusty: DNE

Patches_linux-lts-xenial:
upstream_linux-lts-xenial: released (5.7~rc6)
precise/esm_linux-lts-xenial: DNE
trusty_linux-lts-xenial: ignored (out of standard support)
trusty/esm_linux-lts-xenial: ignored (was needs-triage ESM criteria)
xenial_linux-lts-xenial: DNE
bionic_linux-lts-xenial: DNE
focal_linux-lts-xenial: DNE
groovy_linux-lts-xenial: DNE
devel_linux-lts-xenial: DNE

Patches_linux-kvm:
upstream_linux-kvm: released (5.7~rc6)
precise/esm_linux-kvm: DNE
trusty_linux-kvm: DNE
trusty/esm_linux-kvm: DNE
xenial_linux-kvm: released (4.4.0-1076.83)
esm-infra/xenial_linux-kvm: released (4.4.0-1076.83)
bionic_linux-kvm: released (4.15.0-1069.70)
focal_linux-kvm: released (5.4.0-1018.18)
groovy_linux-kvm: not-affected (5.4.0-1020.20)
devel_linux-kvm: not-affected (5.8.0-1010.11+21.04.1)

Patches_linux-aws:
upstream_linux-aws: released (5.7~rc6)
precise/esm_linux-aws: DNE
trusty_linux-aws: ignored (out of standard support)
trusty/esm_linux-aws: ignored (was needs-triage ESM criteria)
xenial_linux-aws: released (4.4.0-1110.121)
esm-infra/xenial_linux-aws: released (4.4.0-1110.121)
bionic_linux-aws: released (4.15.0-1077.81)
focal_linux-aws: released (5.4.0-1018.18)
groovy_linux-aws: not-affected (5.4.0-1020.20)
devel_linux-aws: not-affected (5.8.0-1017.18+21.04.2)

Patches_linux-aws-5.0:
upstream_linux-aws-5.0: released (5.7~rc6)
precise/esm_linux-aws-5.0: DNE
trusty_linux-aws-5.0: DNE
trusty/esm_linux-aws-5.0: DNE
xenial_linux-aws-5.0: DNE
bionic_linux-aws-5.0: ignored (superseded by linux-aws-5.3)
focal_linux-aws-5.0: DNE
groovy_linux-aws-5.0: DNE
devel_linux-aws-5.0: DNE

Patches_linux-aws-5.3:
upstream_linux-aws-5.3: released (5.7~rc6)
precise/esm_linux-aws-5.3: DNE
trusty_linux-aws-5.3: DNE
trusty/esm_linux-aws-5.3: DNE
xenial_linux-aws-5.3: DNE
bionic_linux-aws-5.3: ignored (superseded by linux-aws-5.4)
focal_linux-aws-5.3: DNE
groovy_linux-aws-5.3: DNE
devel_linux-aws-5.3: DNE

Patches_linux-aws-5.4:
upstream_linux-aws-5.4: released (5.7~rc6)
precise/esm_linux-aws-5.4: DNE
trusty_linux-aws-5.4: DNE
trusty/esm_linux-aws-5.4: DNE
xenial_linux-aws-5.4: DNE
bionic_linux-aws-5.4: not-affected (5.4.0-1018.18~18.04.1)
focal_linux-aws-5.4: DNE
groovy_linux-aws-5.4: DNE
devel_linux-aws-5.4: DNE

Patches_linux-aws-hwe:
upstream_linux-aws-hwe: released (5.7~rc6)
precise/esm_linux-aws-hwe: DNE
trusty_linux-aws-hwe: DNE
trusty/esm_linux-aws-hwe: DNE
xenial_linux-aws-hwe: released (4.15.0-1074.78~16.04.1)
esm-infra/xenial_linux-aws-hwe: released (4.15.0-1074.78~16.04.1)
bionic_linux-aws-hwe: DNE
focal_linux-aws-hwe: DNE
groovy_linux-aws-hwe: DNE
devel_linux-aws-hwe: DNE

Patches_linux-azure:
upstream_linux-azure: released (5.7~rc6)
precise/esm_linux-azure: DNE
trusty_linux-azure: ignored (out of standard support)
trusty/esm_linux-azure: ignored (was needs-triage ESM criteria)
xenial_linux-azure: released (4.15.0-1091.101~16.04.1)
esm-infra/xenial_linux-azure: released (4.15.0-1091.101~16.04.1)
bionic_linux-azure: ignored (superseded by linux-azure-5.3)
focal_linux-azure: released (5.4.0-1020.20)
groovy_linux-azure: not-affected (5.4.0-1022.22)
devel_linux-azure: not-affected (5.8.0-1016.17+21.04.1)

Patches_linux-azure-4.15:
upstream_linux-azure-4.15: released (5.7~rc6)
precise/esm_linux-azure-4.15: DNE
trusty_linux-azure-4.15: DNE
trusty/esm_linux-azure-4.15: DNE
xenial_linux-azure-4.15: DNE
bionic_linux-azure-4.15: released (4.15.0-1091.101)
focal_linux-azure-4.15: DNE
groovy_linux-azure-4.15: DNE
devel_linux-azure-4.15: DNE

Patches_linux-azure-5.3:
upstream_linux-azure-5.3: released (5.7~rc6)
precise/esm_linux-azure-5.3: DNE
trusty_linux-azure-5.3: DNE
trusty/esm_linux-azure-5.3: DNE
xenial_linux-azure-5.3: DNE
bionic_linux-azure-5.3: ignored (superseded by linux-azure-5.4)
focal_linux-azure-5.3: DNE
groovy_linux-azure-5.3: DNE
devel_linux-azure-5.3: DNE

Patches_linux-azure-5.4:
upstream_linux-azure-5.4: released (5.7~rc6)
precise/esm_linux-azure-5.4: DNE
trusty_linux-azure-5.4: DNE
trusty/esm_linux-azure-5.4: DNE
xenial_linux-azure-5.4: DNE
bionic_linux-azure-5.4: not-affected (5.4.0-1020.20~18.04.1)
focal_linux-azure-5.4: DNE
groovy_linux-azure-5.4: DNE
devel_linux-azure-5.4: DNE

Patches_linux-azure-edge:
upstream_linux-azure-edge: released (5.7~rc6)
precise/esm_linux-azure-edge: DNE
trusty_linux-azure-edge: DNE
trusty/esm_linux-azure-edge: DNE
xenial_linux-azure-edge: DNE
bionic_linux-azure-edge: ignored (superseded by linux-azure-5.3)
focal_linux-azure-edge: DNE
groovy_linux-azure-edge: DNE
devel_linux-azure-edge: DNE

Patches_linux-gcp:
upstream_linux-gcp: released (5.7~rc6)
precise/esm_linux-gcp: DNE
trusty_linux-gcp: DNE
trusty/esm_linux-gcp: DNE
xenial_linux-gcp: released (4.15.0-1078.88~16.04.1)
esm-infra/xenial_linux-gcp: released (4.15.0-1078.88~16.04.1)
bionic_linux-gcp: ignored (superseded by linux-gcp-5.3)
focal_linux-gcp: released (5.4.0-1019.19)
groovy_linux-gcp: not-affected (5.4.0-1021.21)
devel_linux-gcp: not-affected (5.8.0-1015.15+21.04.1)

Patches_linux-gcp-4.15:
upstream_linux-gcp-4.15: released (5.7~rc6)
precise/esm_linux-gcp-4.15: DNE
trusty_linux-gcp-4.15: DNE
trusty/esm_linux-gcp-4.15: DNE
xenial_linux-gcp-4.15: DNE
bionic_linux-gcp-4.15: released (4.15.0-1078.88)
focal_linux-gcp-4.15: DNE
groovy_linux-gcp-4.15: DNE
devel_linux-gcp-4.15: DNE

Patches_linux-gcp-5.3:
upstream_linux-gcp-5.3: released (5.7~rc6)
precise/esm_linux-gcp-5.3: DNE
trusty_linux-gcp-5.3: DNE
trusty/esm_linux-gcp-5.3: DNE
xenial_linux-gcp-5.3: DNE
bionic_linux-gcp-5.3: ignored (superseded by linux-gcp-5.4)
focal_linux-gcp-5.3: DNE
groovy_linux-gcp-5.3: DNE
devel_linux-gcp-5.3: DNE

Patches_linux-gcp-5.4:
upstream_linux-gcp-5.4: released (5.7~rc6)
precise/esm_linux-gcp-5.4: DNE
trusty_linux-gcp-5.4: DNE
trusty/esm_linux-gcp-5.4: DNE
xenial_linux-gcp-5.4: DNE
bionic_linux-gcp-5.4: not-affected (5.4.0-1019.19~18.04.2)
focal_linux-gcp-5.4: DNE
groovy_linux-gcp-5.4: DNE
devel_linux-gcp-5.4: DNE

Patches_linux-gcp-edge:
upstream_linux-gcp-edge: released (5.7~rc6)
precise/esm_linux-gcp-edge: DNE
trusty_linux-gcp-edge: DNE
trusty/esm_linux-gcp-edge: DNE
xenial_linux-gcp-edge: DNE
bionic_linux-gcp-edge: ignored (superseded by linux-gcp-5.3)
focal_linux-gcp-edge: DNE
groovy_linux-gcp-edge: DNE
devel_linux-gcp-edge: DNE

Patches_linux-gke-4.15:
upstream_linux-gke-4.15: released (5.7~rc6)
precise/esm_linux-gke-4.15: DNE
trusty_linux-gke-4.15: DNE
trusty/esm_linux-gke-4.15: DNE
xenial_linux-gke-4.15: DNE
bionic_linux-gke-4.15: released (4.15.0-1064.67)
focal_linux-gke-4.15: DNE
groovy_linux-gke-4.15: DNE
devel_linux-gke-4.15: DNE

Patches_linux-gke-5.0:
upstream_linux-gke-5.0: released (5.7~rc6)
precise/esm_linux-gke-5.0: DNE
trusty_linux-gke-5.0: DNE
trusty/esm_linux-gke-5.0: DNE
xenial_linux-gke-5.0: DNE
bionic_linux-gke-5.0: released (5.0.0-1043.44)
focal_linux-gke-5.0: DNE
groovy_linux-gke-5.0: DNE
devel_linux-gke-5.0: DNE

Patches_linux-gke-5.3:
upstream_linux-gke-5.3: released (5.7~rc6)
precise/esm_linux-gke-5.3: DNE
trusty_linux-gke-5.3: DNE
trusty/esm_linux-gke-5.3: DNE
xenial_linux-gke-5.3: DNE
bionic_linux-gke-5.3: released (5.3.0-1030.32~18.04.1)
focal_linux-gke-5.3: DNE
groovy_linux-gke-5.3: DNE
devel_linux-gke-5.3: DNE

Patches_linux-oracle:
upstream_linux-oracle: released (5.7~rc6)
precise/esm_linux-oracle: DNE
trusty_linux-oracle: DNE
trusty/esm_linux-oracle: DNE
xenial_linux-oracle: released (4.15.0-1046.50~16.04.1)
esm-infra/xenial_linux-oracle: released (4.15.0-1046.50~16.04.1)
bionic_linux-oracle: released (4.15.0-1048.52)
focal_linux-oracle: released (5.4.0-1019.19)
groovy_linux-oracle: not-affected (5.4.0-1021.21)
devel_linux-oracle: not-affected (5.8.0-1014.14+21.04.1)

Patches_linux-oracle-5.0:
upstream_linux-oracle-5.0: released (5.7~rc6)
precise/esm_linux-oracle-5.0: DNE
trusty_linux-oracle-5.0: DNE
trusty/esm_linux-oracle-5.0: DNE
xenial_linux-oracle-5.0: DNE
bionic_linux-oracle-5.0: ignored (superseded by linux-oracle-5.3)
focal_linux-oracle-5.0: DNE
groovy_linux-oracle-5.0: DNE
devel_linux-oracle-5.0: DNE

Patches_linux-oracle-5.3:
upstream_linux-oracle-5.3: released (5.7~rc6)
precise/esm_linux-oracle-5.3: DNE
trusty_linux-oracle-5.3: DNE
trusty/esm_linux-oracle-5.3: DNE
xenial_linux-oracle-5.3: DNE
bionic_linux-oracle-5.3: ignored (superseded by linux-oracle-5.4)
focal_linux-oracle-5.3: DNE
groovy_linux-oracle-5.3: DNE
devel_linux-oracle-5.3: DNE

Patches_linux-oracle-5.4:
upstream_linux-oracle-5.4: released (5.7~rc6)
precise/esm_linux-oracle-5.4: DNE
trusty_linux-oracle-5.4: DNE
trusty/esm_linux-oracle-5.4: DNE
xenial_linux-oracle-5.4: DNE
bionic_linux-oracle-5.4: not-affected (5.4.0-1019.19~18.04.1)
focal_linux-oracle-5.4: DNE
groovy_linux-oracle-5.4: DNE
devel_linux-oracle-5.4: DNE

Patches_linux-oem:
upstream_linux-oem: released (5.7~rc6)
precise/esm_linux-oem: DNE
trusty_linux-oem: DNE
trusty/esm_linux-oem: DNE
xenial_linux-oem: ignored (superseded by linux-hwe)
bionic_linux-oem: ignored (was pending [4.15.0-1091.101] now end-of-life)
focal_linux-oem: DNE
groovy_linux-oem: DNE
devel_linux-oem: DNE

Patches_linux-oem-5.6:
upstream_linux-oem-5.6: released (5.7~rc6)
precise/esm_linux-oem-5.6: DNE
trusty_linux-oem-5.6: DNE
trusty/esm_linux-oem-5.6: DNE
xenial_linux-oem-5.6: DNE
bionic_linux-oem-5.6: DNE
focal_linux-oem-5.6: released (5.6.0-1011.11)
groovy_linux-oem-5.6: DNE
devel_linux-oem-5.6: DNE

Patches_linux-oem-osp1:
upstream_linux-oem-osp1: released (5.7~rc6)
precise/esm_linux-oem-osp1: DNE
trusty_linux-oem-osp1: DNE
trusty/esm_linux-oem-osp1: DNE
xenial_linux-oem-osp1: DNE
bionic_linux-oem-osp1: ignored (was needs-triage now end-of-life)
focal_linux-oem-osp1: DNE
groovy_linux-oem-osp1: DNE
devel_linux-oem-osp1: DNE

Patches_linux-raspi:
upstream_linux-raspi: released (5.7~rc6)
precise/esm_linux-raspi: DNE
trusty_linux-raspi: DNE
trusty/esm_linux-raspi: DNE
xenial_linux-raspi: DNE
bionic_linux-raspi: DNE
focal_linux-raspi: released (5.4.0-1013.13)
groovy_linux-raspi: not-affected (5.4.0-1015.15)
devel_linux-raspi: not-affected (5.8.0-1008.11+21.04.1)

Patches_linux-raspi2:
upstream_linux-raspi2: released (5.7~rc6)
precise/esm_linux-raspi2: DNE
trusty_linux-raspi2: DNE
trusty/esm_linux-raspi2: DNE
xenial_linux-raspi2: released (4.4.0-1135.144)
bionic_linux-raspi2: released (4.15.0-1065.69)
focal_linux-raspi2: ignored (replaced by linux-raspi)
groovy_linux-raspi2: DNE
devel_linux-raspi2: DNE

Patches_linux-raspi2-5.3:
upstream_linux-raspi2-5.3: released (5.7~rc6)
precise/esm_linux-raspi2-5.3: DNE
trusty_linux-raspi2-5.3: DNE
trusty/esm_linux-raspi2-5.3: DNE
xenial_linux-raspi2-5.3: DNE
bionic_linux-raspi2-5.3: released (5.3.0-1028.30~18.04.2)
focal_linux-raspi2-5.3: DNE
groovy_linux-raspi2-5.3: DNE
devel_linux-raspi2-5.3: DNE

Patches_linux-raspi-5.4:
upstream_linux-raspi-5.4: released (5.7~rc6)
precise/esm_linux-raspi-5.4: DNE
trusty_linux-raspi-5.4: DNE
trusty/esm_linux-raspi-5.4: DNE
xenial_linux-raspi-5.4: DNE
bionic_linux-raspi-5.4: not-affected (5.4.0-1013.13~18.04.1)
focal_linux-raspi-5.4: DNE
groovy_linux-raspi-5.4: DNE
devel_linux-raspi-5.4: DNE

Patches_linux-riscv:
upstream_linux-riscv: released (5.7~rc6)
precise/esm_linux-riscv: DNE
trusty_linux-riscv: DNE
trusty/esm_linux-riscv: DNE
xenial_linux-riscv: DNE
bionic_linux-riscv: DNE
focal_linux-riscv: released (5.4.0-28.32)
groovy_linux-riscv: not-affected (5.4.0-30.34)
devel_linux-riscv: not-affected (5.8.0-10.12+21.04.1)

Patches_linux-snapdragon:
upstream_linux-snapdragon: released (5.7~rc6)
precise/esm_linux-snapdragon: DNE
trusty_linux-snapdragon: DNE
trusty/esm_linux-snapdragon: DNE
xenial_linux-snapdragon: released (4.4.0-1139.147)
bionic_linux-snapdragon: released (4.15.0-1081.88)
focal_linux-snapdragon: DNE
groovy_linux-snapdragon: DNE
devel_linux-snapdragon: DNE

Patches_linux-hwe-5.8:
upstream_linux-hwe-5.8: released (5.7~rc6)
precise/esm_linux-hwe-5.8: DNE
trusty_linux-hwe-5.8: DNE
trusty/esm_linux-hwe-5.8: DNE
xenial_linux-hwe-5.8: DNE
bionic_linux-hwe-5.8: DNE
focal_linux-hwe-5.8: not-affected (5.8.0-23.24~20.04.1)
groovy_linux-hwe-5.8: DNE
devel_linux-hwe-5.8: DNE

Patches_linux-gke-5.4:
upstream_linux-gke-5.4: released (5.7~rc6)
precise/esm_linux-gke-5.4: DNE
trusty_linux-gke-5.4: DNE
trusty/esm_linux-gke-5.4: DNE
xenial_linux-gke-5.4: DNE
bionic_linux-gke-5.4: not-affected (5.4.0-1025.25~18.04.1)
focal_linux-gke-5.4: DNE
groovy_linux-gke-5.4: DNE
devel_linux-gke-5.4: DNE

Patches_linux-gkeop-5.4:
upstream_linux-gkeop-5.4: released (5.7~rc6)
precise/esm_linux-gkeop-5.4: DNE
trusty_linux-gkeop-5.4: DNE
trusty/esm_linux-gkeop-5.4: DNE
xenial_linux-gkeop-5.4: DNE
bionic_linux-gkeop-5.4: not-affected (5.4.0-1001.1)
focal_linux-gkeop-5.4: DNE
groovy_linux-gkeop-5.4: DNE
devel_linux-gkeop-5.4: DNE