CVE-2020-25669

Source
https://nvd.nist.gov/vuln/detail/CVE-2020-25669
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-25669.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-25669
Downstream
Related
Published
2021-05-26T12:15:15Z
Modified
2025-08-09T19:01:28Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A vulnerability was found in the Linux Kernel where the function sunkbdreinit having been scheduled by sunkbdinterrupt before sunkbd being freed. Though the dangling pointer is set to NULL in sunkbddisconnect, there is still an alias in sunkbdreinit causing Use After Free.

References

Affected packages