We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2020-36791

net_sched: keep alloc_hash updated after hash allocation



Description

In the Linux kernel, the following vulnerability has been resolved: net_sched: keep alloc_hash updated after hash allocation In commit 599be01ee567 ("net_sched: fix an OOB access in cls_tcindex") I moved cp->hash calculation before the first tcindex_alloc_perfect_hash(), but cp->alloc_hash is left untouched. This difference could lead to another out of bound access. cp->alloc_hash should always be the size allocated, we should update it after this tcindex_alloc_perfect_hash().

Reserved 2024-02-26 | Published 2025-05-07 | Updated 2025-05-07 | Assigner Linux

Product status

Default status
unaffected

73c29d2f6f8ae731b1e09051b69ed3ba2319482b before d6cdc5bb19b595486fb2e6661e5138d73a57f454
affected

b974ac51f5834a729de252fc5c1c9de9efd79b45 before c4453d2833671e3a9f6bd52f0f581056c3736386
affected

6cb448ee493c8a514c9afa0c346f3f5b3227de85 before 9f8b6c44be178c2498a00b270872a6e30e7c8266
affected

478c4b2ffd44e5186c7e22ae7c38a86a5b9cfde5 before 557d015ffb27b672e24e6ad141fd887783871dc2
affected

dd8142a6fa5270783d415292ec8169f4ea2a5468 before d23faf32e577922b6da20bf3740625c1105381bf
affected

2c66ff8d08f81bcf8e8cb22e31e39c051b15336a before bd3ee8fb6371b45c71c9345cc359b94da2ddefa9
affected

599be01ee567b61f4471ee8078870847d0a11e8e before 0d1c3530e1bd38382edef72591b78e877e0edcd3
affected

Default status
unaffected

4.4.214 before 4.4.218
affected

4.9.214 before 4.9.218
affected

4.14.171 before 4.14.175
affected

4.19.103 before 4.19.114
affected

5.4.19 before 5.4.29
affected

5.5.3 before 5.5.14
affected

References

git.kernel.org/...c/d6cdc5bb19b595486fb2e6661e5138d73a57f454

git.kernel.org/...c/c4453d2833671e3a9f6bd52f0f581056c3736386

git.kernel.org/...c/9f8b6c44be178c2498a00b270872a6e30e7c8266

git.kernel.org/...c/557d015ffb27b672e24e6ad141fd887783871dc2

git.kernel.org/...c/d23faf32e577922b6da20bf3740625c1105381bf

git.kernel.org/...c/bd3ee8fb6371b45c71c9345cc359b94da2ddefa9

git.kernel.org/...c/0d1c3530e1bd38382edef72591b78e877e0edcd3

syzkaller.appspot.com/...693da894e7b078d18fca2c9c0a19b457534

blog.cdthoughts.ch/2021/03/16/syzbot-bug.html

cve.org (CVE-2020-36791)

nvd.nist.gov (CVE-2020-36791)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2020-36791

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.