CVE-2020-14386 log

Source
Severity Medium
Remote No
Type Privilege escalation
Description
A local attacker with CAP_NET_RAW privileges can escalate privileges via a memory corruption in net/packet/af_packet.c.
Group Package Affected Fixed Severity Status Ticket
AVG-1224 linux-zen 5.8.7.zen1-1 Medium Vulnerable
AVG-1223 linux-lts 5.4.63-1 Medium Vulnerable
AVG-1222 linux 5.8.7.arch1-1 Medium Vulnerable
References
https://www.openwall.com/lists/oss-security/2020/09/03/3
Notes
Mitigation: If unprivileged user namespaces are not needed, set the kernel.unprivileged_userns_clone sysctl to 0:

$ sudo sysctl kernel.unprivileged_userns_clone=0