UBUNTU-CVE-2020-15437

Details

The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized.

Affected Packages(71 packages)

linux

Ubuntu 16.04 LTS

Fixed in:

4.4.0-189.219

linux-aws

Ubuntu 16.04 LTS

Fixed in:

4.4.0-1113.126

linux-aws-hwe

Ubuntu 16.04 LTS

Fixed in:

4.15.0-1080.84~16.04.1

linux-azure

Ubuntu 16.04 LTS

Fixed in:

4.15.0-1093.103~16.04.1

linux-gcp

Ubuntu 16.04 LTS

Fixed in:

4.15.0-1081.92~16.04.1

linux-hwe

Ubuntu 16.04 LTS

Fixed in:

4.15.0-115.116~16.04.1

linux-hwe-edge

Ubuntu 16.04 LTS

Affected versions:

4.10.0-14.16~16.04.14.10.0-19.21~16.04.14.10.0-20.22~16.04.14.10.0-21.23~16.04.14.10.0-22.24~16.04.14.10.0-24.28~16.04.14.10.0-26.30~16.04.14.11.0-13.19~16.04.14.11.0-14.20~16.04.14.13.0-16.19~16.04.3+13 more

linux-kvm

Ubuntu 16.04 LTS

Fixed in:

4.4.0-1079.86

linux-oracle

Ubuntu 16.04 LTS

Fixed in:

4.15.0-1051.55~16.04.1

linux-raspi2

Ubuntu 16.04 LTS

Fixed in:

4.4.0-1138.147