AVG-1244 log

Package linux
Status Fixed
Severity High
Type arbitrary code execution
Affected 5.9.7.arch1-1
Fixed 5.10.2.arch1-1
Current 5.19.1.arch2-1 [testing]
5.18.16.arch1-1 [core]
Ticket FS#68257
Created Wed Oct 14 15:48:59 2020
Issue Severity Remote Type Description
CVE-2020-16119 High Yes Arbitrary code execution
Hadar Manor reported that by reusing a DCCP socket with an attached dccps_hc_tx_ccid as a listener,  in Linux <= 5.9, it will be used after being released,...
References
https://www.openwall.com/lists/oss-security/2020/10/13/7
https://lore.kernel.org/netdev/20201013171849.236025-1-kleber.souza@canonical.com/T/
Notes
DCCP support disabled