Launchpad CVE tracker

CVE 2020-12656

** DISPUTED ** gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_gss_krb5 implementation in the Linux kernel through 5.6.10 lacks certain domain_release calls, leading to a memory leak. Note: This was disputed with the assertion that the issue does not grant any access not already available. It is a problem that on unloading a specific kernel module some memory is leaked, but loading kernel modules is a privileged operation. A user could also write a kernel module to consume any amount of memory they like and load that replicating the effect of this bug.

Related bugs and status

CVE-2020-12656 (Candidate) is related to these bugs:

Bug #1893752: Get the extended DPCD according to the related field in the DPCD registers.

		In	Importance	Status
1893752	Get the extended DPCD according to the related field in the DPCD registers.	linux (Ubuntu)	Undecided	Fix Released
1893752	Get the extended DPCD according to the related field in the DPCD registers.	linux-oem-5.6 (Ubuntu)	Undecided	Invalid
1893752	Get the extended DPCD according to the related field in the DPCD registers.	linux (Ubuntu Focal)	Undecided	Won't Fix
1893752	Get the extended DPCD according to the related field in the DPCD registers.	linux-oem-5.6 (Ubuntu Focal)	Undecided	Fix Released
1893752	Get the extended DPCD according to the related field in the DPCD registers.	HWE Next	Undecided	Fix Released

Bug #1895606: Thunderbolt3 daisy chain sometimes doesn't work

		In	Importance	Status
1895606	Thunderbolt3 daisy chain sometimes doesn't work	linux (Ubuntu)	Undecided	Fix Released
1895606	Thunderbolt3 daisy chain sometimes doesn't work	linux (Ubuntu Groovy)	Undecided	Fix Released
1895606	Thunderbolt3 daisy chain sometimes doesn't work	linux (Ubuntu Focal)	Medium	Fix Released
1895606	Thunderbolt3 daisy chain sometimes doesn't work	linux-oem-5.6 (Ubuntu)	Undecided	Invalid
1895606	Thunderbolt3 daisy chain sometimes doesn't work	linux-oem-5.6 (Ubuntu Focal)	Undecided	Fix Released
1895606	Thunderbolt3 daisy chain sometimes doesn't work	linux-oem-osp1 (Ubuntu)	Undecided	Invalid
1895606	Thunderbolt3 daisy chain sometimes doesn't work	linux-oem-osp1 (Ubuntu Bionic)	Undecided	Invalid
1895606	Thunderbolt3 daisy chain sometimes doesn't work	HWE Next	Undecided	Fix Released

Bug #1895718: Fix non-working NVMe after S3

		In	Importance	Status
1895718	Fix non-working NVMe after S3	linux (Ubuntu)	Medium	Fix Released
1895718	Fix non-working NVMe after S3	linux (Ubuntu Focal)	Medium	Fix Released
1895718	Fix non-working NVMe after S3	linux (Ubuntu Groovy)	Medium	Fix Released
1895718	Fix non-working NVMe after S3	linux-oem-5.6 (Ubuntu)	Undecided	Invalid
1895718	Fix non-working NVMe after S3	linux-oem-5.6 (Ubuntu Focal)	Undecided	Fix Released
1895718	Fix non-working NVMe after S3	linux-oem-5.6 (Ubuntu Groovy)	Undecided	Won't Fix
1895718	Fix non-working NVMe after S3	HWE Next	Undecided	Fix Released

Bug #1895982: focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker

		In	Importance	Status
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	In Progress
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow prepare-package-lrm	Medium	Fix Released
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	New
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	New
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	In Progress
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	In Progress
1895982	focal/linux-oem-5.6: 5.6.0-1029.29 -proposed tracker	linux-oem-5.6 (Ubuntu Focal)	Medium	Fix Released

Bug #1896008: linux-libc-dev in proposed cause seccomp_bpf from seccomp in ubuntu_kernel_selftests to fail on F-oem-5.6

		In	Importance	Status
1896008	linux-libc-dev in proposed cause seccomp_bpf from seccomp in ubuntu_kernel_selftests to fail on F-oem-5.6	ubuntu-kernel-tests	Undecided	Fix Released
1896008	linux-libc-dev in proposed cause seccomp_bpf from seccomp in ubuntu_kernel_selftests to fail on F-oem-5.6	linux (Ubuntu)	Undecided	Invalid
1896008	linux-libc-dev in proposed cause seccomp_bpf from seccomp in ubuntu_kernel_selftests to fail on F-oem-5.6	linux-oem-5.6 (Ubuntu)	Undecided	Fix Released

Bug #1896598: Enable LTR for endpoints behind VMD

		In	Importance	Status
1896598	Enable LTR for endpoints behind VMD	linux (Ubuntu)	Medium	Fix Released
1896598	Enable LTR for endpoints behind VMD	linux (Ubuntu Groovy)	Medium	Fix Released
1896598	Enable LTR for endpoints behind VMD	linux (Ubuntu Focal)	Undecided	Won't Fix
1896598	Enable LTR for endpoints behind VMD	linux-oem-5.6 (Ubuntu)	Undecided	Invalid
1896598	Enable LTR for endpoints behind VMD	linux-oem-5.6 (Ubuntu Focal)	Medium	Fix Released
1896598	Enable LTR for endpoints behind VMD	linux-oem-5.6 (Ubuntu Groovy)	Undecided	Invalid
1896598	Enable LTR for endpoints behind VMD	HWE Next	Undecided	Fix Released

Bug #1896716: [SRU][OEM-5.6]Fix AMD system hang after re-plugin USBC-DP dongle

		In	Importance	Status
1896716	[SRU][OEM-5.6]Fix AMD system hang after re-plugin USBC-DP dongle	linux-oem-5.6 (Ubuntu)	Critical	Fix Released
1896716	[SRU][OEM-5.6]Fix AMD system hang after re-plugin USBC-DP dongle	linux-oem-5.6 (Ubuntu Focal)	Critical	Fix Released
1896716	[SRU][OEM-5.6]Fix AMD system hang after re-plugin USBC-DP dongle	HWE Next	Critical	Fix Released

Bug #1897501: HP Zbook Studio G7 boots into corrupted screen with PSR featured panel

		In	Importance	Status
1897501	HP Zbook Studio G7 boots into corrupted screen with PSR featured panel	linux (Ubuntu)	High	Fix Released
1897501	HP Zbook Studio G7 boots into corrupted screen with PSR featured panel	HWE Next	Undecided	Fix Released
1897501	HP Zbook Studio G7 boots into corrupted screen with PSR featured panel	linux (Ubuntu Focal)	High	Fix Released
1897501	HP Zbook Studio G7 boots into corrupted screen with PSR featured panel	linux (Ubuntu Groovy)	High	Fix Released
1897501	HP Zbook Studio G7 boots into corrupted screen with PSR featured panel	linux-oem-5.6 (Ubuntu)	Undecided	Invalid
1897501	HP Zbook Studio G7 boots into corrupted screen with PSR featured panel	linux-oem-5.6 (Ubuntu Focal)	High	Fix Released
1897501	HP Zbook Studio G7 boots into corrupted screen with PSR featured panel	linux-oem-5.6 (Ubuntu Groovy)	Undecided	Invalid

Bug #1897508: Fix headset jack detection on Dell UFF desktops

		In	Importance	Status
1897508	Fix headset jack detection on Dell UFF desktops	linux-oem-5.6 (Ubuntu)	Undecided	Invalid
1897508	Fix headset jack detection on Dell UFF desktops	linux-oem-5.6 (Ubuntu Focal)	Medium	Fix Released
1897508	Fix headset jack detection on Dell UFF desktops	HWE Next	Undecided	Fix Released

Bug #1897694: alsa/hda: mic doesn't work on a HP AIO machine

		In	Importance	Status
1897694	alsa/hda: mic doesn't work on a HP AIO machine	linux-oem-5.6 (Ubuntu)	Critical	Fix Released
1897694	alsa/hda: mic doesn't work on a HP AIO machine	linux-oem-5.6 (Ubuntu Focal)	Critical	Fix Released
1897694	alsa/hda: mic doesn't work on a HP AIO machine	HWE Next	Undecided	Fix Released

Bug #1897755: Fix broken e1000e device after S3

		In	Importance	Status
1897755	Fix broken e1000e device after S3	linux (Ubuntu)	Medium	Fix Released
1897755	Fix broken e1000e device after S3	linux-oem-5.6 (Ubuntu)	Undecided	Invalid
1897755	Fix broken e1000e device after S3	linux (Ubuntu Focal)	Medium	Fix Released
1897755	Fix broken e1000e device after S3	linux-oem-5.6 (Ubuntu Focal)	Medium	Fix Released
1897755	Fix broken e1000e device after S3	linux (Ubuntu Groovy)	Medium	Fix Released
1897755	Fix broken e1000e device after S3	linux-oem-5.6 (Ubuntu Groovy)	Undecided	Invalid
1897755	Fix broken e1000e device after S3	HWE Next	Undecided	Fix Released

Bug #1898714: focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker

		In	Importance	Status
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow prepare-package-lrm	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	linux-oem-5.6 (Ubuntu Focal)	Medium	Fix Released
1898714	focal/linux-oem-5.6: 5.6.0-1031.32 -proposed tracker	Kernel SRU Workflow kernel-signoff	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2020-12656

References