Launchpad.net

CVE 2020-0427

In create_pinctrl of core.c, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-140550171

Related bugs and status

CVE-2020-0427 (Candidate) is related to these bugs:

Bug #1897602: Xenial update: v4.4.237 upstream stable release

Summary				In	Importance	Status
	1897602	Xenial update: v4.4.237 upstream stable release		linux (Ubuntu)	Undecided	Invalid
	1897602	Xenial update: v4.4.237 upstream stable release		linux (Ubuntu Xenial)	Undecided	Fix Released

Bug #1898903: *-tools-common packages descriptions have typo "PGKVER"

		In	Importance	Status
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux (Ubuntu)	Low	Fix Released
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux (Ubuntu Focal)	Low	Fix Released
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux (Ubuntu Groovy)	Low	Fix Released
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux (Ubuntu Xenial)	Low	Fix Released
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux (Ubuntu Bionic)	Low	Fix Released
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux-hwe-5.4 (Ubuntu)	Undecided	Invalid
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux-hwe-5.4 (Ubuntu Bionic)	Low	Fix Released
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux-hwe-5.4 (Ubuntu Focal)	Undecided	Invalid
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux-hwe-5.4 (Ubuntu Groovy)	Undecided	Invalid
1898903	*-tools-common packages descriptions have typo "PGKVER"	linux-hwe-5.4 (Ubuntu Xenial)	Undecided	Invalid

Bug #1899506: Xenial update: v4.4.238 upstream stable release

Summary				In	Importance	Status
	1899506	Xenial update: v4.4.238 upstream stable release		linux (Ubuntu)	Undecided	Invalid
	1899506	Xenial update: v4.4.238 upstream stable release		linux (Ubuntu Xenial)	Medium	Fix Released

Bug #1899832: CONFIG options for (ipip, sit) should not be built-in to the KVM kernels

		In	Importance	Status
1899832	CONFIG options for (ipip, sit) should not be built-in to the KVM kernels	linux-kvm (Ubuntu)	Undecided	Fix Released
1899832	CONFIG options for (ipip, sit) should not be built-in to the KVM kernels	linux-kvm (Ubuntu Bionic)	Undecided	Fix Released
1899832	CONFIG options for (ipip, sit) should not be built-in to the KVM kernels	linux-kvm (Ubuntu Xenial)	Undecided	Fix Released
1899832	CONFIG options for (ipip, sit) should not be built-in to the KVM kernels	linux-kvm (Ubuntu Groovy)	Undecided	Fix Released
1899832	CONFIG options for (ipip, sit) should not be built-in to the KVM kernels	linux-kvm (Ubuntu Focal)	Undecided	Fix Released

Bug #1899993: EFI: Fails when BootCurrent entry does not exist

		In	Importance	Status
1899993	EFI: Fails when BootCurrent entry does not exist	curtin (Ubuntu)	Medium	Invalid
1899993	EFI: Fails when BootCurrent entry does not exist	linux (Ubuntu)	Medium	Fix Released
1899993	EFI: Fails when BootCurrent entry does not exist	curtin (Ubuntu Xenial)	Undecided	Invalid
1899993	EFI: Fails when BootCurrent entry does not exist	linux (Ubuntu Xenial)	Medium	Fix Released
1899993	EFI: Fails when BootCurrent entry does not exist	curtin (Ubuntu Groovy)	Undecided	Invalid
1899993	EFI: Fails when BootCurrent entry does not exist	linux (Ubuntu Groovy)	Medium	Fix Released
1899993	EFI: Fails when BootCurrent entry does not exist	curtin (Ubuntu Bionic)	Undecided	Invalid
1899993	EFI: Fails when BootCurrent entry does not exist	linux (Ubuntu Bionic)	Medium	Fix Released
1899993	EFI: Fails when BootCurrent entry does not exist	curtin (Ubuntu Hirsute)	Medium	Invalid
1899993	EFI: Fails when BootCurrent entry does not exist	linux (Ubuntu Hirsute)	Medium	Fix Released
1899993	EFI: Fails when BootCurrent entry does not exist	curtin (Ubuntu Focal)	Undecided	Invalid
1899993	EFI: Fails when BootCurrent entry does not exist	linux (Ubuntu Focal)	Medium	Fix Released

Bug #1902095: Xenial update: v4.4.239 upstream stable release

Summary				In	Importance	Status
	1902095	Xenial update: v4.4.239 upstream stable release		linux (Ubuntu)	Undecided	Invalid
	1902095	Xenial update: v4.4.239 upstream stable release		linux (Ubuntu Xenial)	Undecided	Fix Released

Bug #1902096: Xenial update: v4.4.240 upstream stable release

Summary				In	Importance	Status
	1902096	Xenial update: v4.4.240 upstream stable release		linux (Ubuntu)	Undecided	Invalid
	1902096	Xenial update: v4.4.240 upstream stable release		linux (Ubuntu Xenial)	Undecided	Fix Released

Bug #1902097: Xenial update: v4.4.241 upstream stable release

Summary				In	Importance	Status
	1902097	Xenial update: v4.4.241 upstream stable release		linux (Ubuntu)	Undecided	Invalid
	1902097	Xenial update: v4.4.241 upstream stable release		linux (Ubuntu Xenial)	Undecided	Fix Released

Bug #1902957: Update kernel packaging to support forward porting kernels

		In	Importance	Status
1902957	Update kernel packaging to support forward porting kernels	linux (Ubuntu)	Medium	Fix Released
1902957	Update kernel packaging to support forward porting kernels	linux (Ubuntu Hirsute)	Medium	Fix Released
1902957	Update kernel packaging to support forward porting kernels	linux (Ubuntu Trusty)	Undecided	Fix Committed
1902957	Update kernel packaging to support forward porting kernels	linux (Ubuntu Groovy)	Undecided	Fix Released
1902957	Update kernel packaging to support forward porting kernels	linux (Ubuntu Xenial)	Undecided	Fix Released
1902957	Update kernel packaging to support forward porting kernels	linux (Ubuntu Bionic)	Undecided	Fix Released
1902957	Update kernel packaging to support forward porting kernels	linux (Ubuntu Focal)	Undecided	Fix Released
1902957	Update kernel packaging to support forward porting kernels	linux (Ubuntu Precise)	Undecided	Invalid

Bug #1903096: xenial/linux-aws: 4.4.0-1118.132 -proposed tracker

		In	Importance	Status
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Invalid
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released
1903096	xenial/linux-aws: 4.4.0-1118.132 -proposed tracker	linux-aws (Ubuntu Xenial)	Medium	Fix Released

Bug #1903099: xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker

		In	Importance	Status
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Invalid
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	New
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	New
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	In Progress
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	In Progress
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	In Progress
1903099	xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker	linux-kvm (Ubuntu Xenial)	Medium	Fix Released

Bug #1903101: xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker

		In	Importance	Status
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Invalid
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released
1903101	xenial/linux-raspi2: 4.4.0-1142.152 -proposed tracker	linux-raspi2 (Ubuntu Xenial)	Medium	Fix Released

Bug #1903103: xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker

		In	Importance	Status
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Invalid
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Invalid
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released
1903103	xenial/linux-snapdragon: 4.4.0-1146.156 -proposed tracker	linux-snapdragon (Ubuntu Xenial)	Medium	Fix Released

Bug #1903107: xenial/linux: 4.4.0-195.227 -proposed tracker

		In	Importance	Status
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Fix Released
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow kernel-signoff	Medium	Confirmed
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	New
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	New
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	In Progress
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	In Progress
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	In Progress
1903107	xenial/linux: 4.4.0-195.227 -proposed tracker	linux (Ubuntu Xenial)	Medium	Fix Released

Bug #1903293: Avoid double newline when running insertchanges

		In	Importance	Status
1903293	Avoid double newline when running insertchanges	linux (Ubuntu)	Low	Fix Released
1903293	Avoid double newline when running insertchanges	linux (Ubuntu Hirsute)	Low	Fix Released
1903293	Avoid double newline when running insertchanges	linux (Ubuntu Xenial)	Low	Fix Released
1903293	Avoid double newline when running insertchanges	linux (Ubuntu Groovy)	Low	Fix Released
1903293	Avoid double newline when running insertchanges	linux (Ubuntu Bionic)	Low	Fix Released
1903293	Avoid double newline when running insertchanges	linux (Ubuntu Focal)	Low	Fix Released

Bug #1905309: xenial/linux: 4.4.0-196.228 -proposed tracker

		In	Importance	Status
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow kernel-signoff	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Committed
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Committed
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	New
1905309	xenial/linux: 4.4.0-196.228 -proposed tracker	linux (Ubuntu Xenial)	Medium	Fix Released

Bug #1905336: sha1_ce and sha2_ce modules no longer load on arm64

Summary				In	Importance	Status
	1905336	sha1_ce and sha2_ce modules no longer load on arm64		linux (Ubuntu)	Undecided	Invalid
	1905336	sha1_ce and sha2_ce modules no longer load on arm64		linux (Ubuntu Xenial)	Undecided	Fix Released

Bug #1905475: Fails to build on powerpc

Summary				In	Importance	Status
	1905475	Fails to build on powerpc		linux (Ubuntu)	Undecided	Invalid
	1905475	Fails to build on powerpc		linux (Ubuntu Xenial)	High	Fix Released

Bug #1905489: xenial/linux: 4.4.0-197.229 -proposed tracker

		In	Importance	Status
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow kernel-signoff	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released
1905489	xenial/linux: 4.4.0-197.229 -proposed tracker	linux (Ubuntu Xenial)	Medium	Fix Released

Bug #1905657: xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker

		In	Importance	Status
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Invalid
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released
1905657	xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker	linux-kvm (Ubuntu Xenial)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2020-0427

Related bugs and status

Related bugs

References