CVE-2020-27171

MEDIUM Year: 2020
CVSS v3 Score
6.0
Medium
CVSS v2 Score
3.6
Low
Weakness Type
CWE-193
View all →

Vulnerability Description

An issue was discovered in the Linux kernel before 5.11.8. kernel/bpf/verifier.c has an off-by-one error (with a resultant integer underflow) affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory, aka CID-10d2bb2e6b1d.

Related Vulnerabilities

CVE-2019-12521

MEDIUM
CVSS:5.9(Medium)

An issue was discovered in Squid through 4.7. When Squid is parsing ESI, it keeps the ESI elements in ESIContext. ESIContext contains a buffer for holding a stack of ESIElements. When a new ESIElement...

CWE-1932019

CVE-2021-4070

MEDIUM
CVSS:5.9(Medium)

Off-by-one Error in GitHub repository v2fly/v2ray-core prior to 4.44.0.

CWE-1932021

CVE-2001-1391

MEDIUM
CVSS:5.5(Medium)

Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory.

CWE-1932001

CVE-2004-0342

MEDIUM
CVSS:5.5(Medium)

WFTPD Pro Server 3.21 Release 1, with the XeroxDocutech option enabled, allows local users to cause a denial of service (crash) via a (1) MKD or (2) XMKD command that causes an absolute path of 260 ch...

CWE-1932004

CVE-2015-8701

MEDIUM
CVSS:6.5(Medium)

QEMU (aka Quick Emulator) built with the Rocker switch emulation support is vulnerable to an off-by-one error. It happens while processing transmit (tx) descriptors in 'tx_consume' routine, if a descr...

CWE-1932015

CVE-2017-2618

MEDIUM
CVSS:5.5(Medium)

A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr files before 4.9.10. An empty (null) write to this file can crash the system by causing the system to a...

CWE-1932017