CVE-2020-29569

CVE	CVE-2020-29569
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2020-12-15 17:15:00 UTC
Updated	2023-01-19 15:53:00 UTC
Description	An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly toggles between the states connect and disconnect. As a consequence, the block backend may re-use a pointer after it was freed. A misbehaving guest can trigger a dom0 crash by continuously connecting / disconnecting a block frontend. Privilege escalation and information leaks cannot be ruled out. This only affects systems with a Linux blkback.

Problem Types: CWE-416

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Debian	Debian Linux	10.0	All	All	All
Operating System	Debian	Debian Linux	9.0	All	All	All
Operating System	Debian	Debian Linux	10.0	All	All	All
Operating System	Debian	Debian Linux	9.0	All	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Hardware	Netapp	Hci Compute Node	-	All	All	All
Hardware	Netapp	Hci Compute Node	-	All	All	All
Operating System	Netapp	Hci Compute Node Bios	-	All	All	All
Operating System	Netapp	Hci Compute Node Bios	-	All	All	All
Application	Netapp	Solidfire Hci Management Node	-	All	All	All
Application	Netapp	Solidfire Hci Management Node	-	All	All	All
Application	Netapp	Solidfire Hci Storage Node	-	All	All	All
Application	Netapp	Solidfire Hci Storage Node	-	All	All	All
Operating System	Xen	Xen	All	All	All	All
Operating System	Xen	Xen	All	All	All	All

Reference	Source	Link	Tags
[SECURITY] [DLA 2557-1] linux-4.19 security update	MLIST	lists.debian.org	Mailing List, Third Party Advisory
[SECURITY] [DLA 2586-1] linux security update	MLIST	lists.debian.org	Mailing List, Third Party Advisory
CVE-2020-29569 Linux Kernel Vulnerability in NetApp Products \| NetApp Product Security	CONFIRM	security.netapp.com	Third Party Advisory
Debian -- Security Information -- DSA-4843-1 linux	DEBIAN	www.debian.org	Third Party Advisory
XSA-350 - Xen Security Advisories	MISC	xenbits.xenproject.org	Patch, Vendor Advisory
Xen: Multiple vulnerabilities (GLSA 202107-30) — Gentoo security	GENTOO	security.gentoo.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

198295 Ubuntu Security Notification for Linux, Linux-aws, Linux-kvm, Linux-lts-xenial, Linux-raspi2, (USN-4876-1)
353100 Amazon Linux Security Advisory for kernel : ALAC2012-2021-024
353101 Amazon Linux Security Advisory for kmod-mlx5 : ALAC2012-2021-025
353102 Amazon Linux Security Advisory for kmod-sfc : ALAC2012-2021-026
353132 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.4-2022-019
377779 Citrix XenServer Security Updates (CTX286756)
501426 Alpine Linux Security Update for linux-lts
504121 Alpine Linux Security Update for linux-lts
6140377 AWS Bottlerocket Security Update for kernel (GHSA-j5p6-xjqh-w48p)
671380 EulerOS Security Update for kernel (EulerOS-SA-2022-1292)
671535 EulerOS Security Update for kernel (EulerOS-SA-2022-1508)
710038 Gentoo Linux Xen Multiple vulnerabilities (GLSA 202107-30)
750373 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:0241-1)
750428 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:0075-1)
900040 CBL-Mariner Linux Security Update for kernel 5.4.91
902948 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (3684)
906169 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (3684-1)