AVG-1269 log

Package	linux-hardened
Status	Fixed
Severity	Medium
Type	multiple issues
Affected	5.9.7.a-1
Fixed	5.9.8.a-1
Current	6.8.7.hardened1-3 [extra-testing] 6.8.7.hardened1-2 [extra]
Ticket	None
Created	Tue Nov 10 21:27:12 2020

Issue	Severity	Remote	Type	Description
CVE-2020-25704	Medium	No	Denial of service	A memory leak has been found in the perf_event_parse_addr_filter function of Linux before 5.9.7, leading to a denial of service.
CVE-2020-8694	Medium	No	Information disclosure	An information disclosure flaw was found in the Linux kernel's Intel Running Average Power Limit (RAPL) implementation. A local non- privileged attacker...

Issue

Severity

Remote

Type

Description

CVE-2020-25704

Medium

Denial of service

A memory leak has been found in the perf_event_parse_addr_filter function of Linux before 5.9.7, leading to a denial of service.

CVE-2020-8694

Medium

Information disclosure

An information disclosure flaw was found in the Linux kernel's Intel Running Average Power Limit (RAPL) implementation. A local non- privileged attacker...

Date	Advisory	Package	Type
10 Nov 2020	ASA-202011-10	linux-hardened	multiple issues

References
https://www.openwall.com/lists/oss-security/2020/11/09/1 https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=7bdb157cdebbf95a1cd94ed2e01b338714075d00 https://www.openwall.com/lists/oss-security/2020/11/10/5 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=949dd0104c496fa7c14991a23c03c62e44637e71

References

https://www.openwall.com/lists/oss-security/2020/11/09/1
https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=7bdb157cdebbf95a1cd94ed2e01b338714075d00
https://www.openwall.com/lists/oss-security/2020/11/10/5
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=949dd0104c496fa7c14991a23c03c62e44637e71