Unrated severityNVD Advisory· Published Sep 16, 2020· Updated Aug 4, 2024

CVE-2020-10781

Description

A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM device nodes in the /dev/ directory. This read allocates kernel memory and is not accounted for a user that triggers the creation of that ZRAM device. With this vulnerability, continually reading the device may consume a large amount of system memory and cause the Out-of-Memory (OOM) killer to activate and terminate random userspace processes, possibly making the system inoperable.

Affected products

123

osv-coords122 versions
pkg:rpm/opensuse/bbswitch&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/crash&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/dpdk&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/drbd&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/hdjmod&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-preempt&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-rt_debug&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-source-rt&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-syms-rt&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-vanilla&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/mhvtl&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/openafs&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/pcfclock&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/rtl8812au&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/sysdig&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/v4l2loopback&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/vhba-kmp&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/virtualbox&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/xtables-addons&distro=openSUSE%20Leap%2015.2 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP1 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/kernel-livepatch-SLE15-SP1_Update_13&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP1 pkg:rpm/suse/kernel-livepatch-SLE15-SP2_Update_1&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2 pkg:rpm/suse/kernel-livepatch-SLE15_Update_22&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP1 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP1 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP1 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP1 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP1 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP1 pkg:rpm/suse/kernel-vanilla&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/kernel-vanilla&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/kernel-vanilla&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/kernel-vanilla&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_7&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
< 0.8-lp152.6.2.1+ 121 more
- (no CPE)range: < 0.8-lp152.6.2.1
- (no CPE)range: < 7.2.8-lp152.3.2.1
- (no CPE)range: < 19.11.1-lp152.2.5.1
- (no CPE)range: < 9.0.22~1+git.fe2b5983-lp152.2.2.1
- (no CPE)range: < 1.28-lp152.6.2.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 5.3.18-lp152.3.5.1
- (no CPE)range: < 5.3.18-lp152.3.5.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 5.3.18-lp152.3.5.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 5.3.18-lp152.36.1
- (no CPE)range: < 5.3.18-lp152.3.5.1
- (no CPE)range: < 4.12.14-lp151.28.59.1
- (no CPE)range: < 1.62-lp152.2.2.1
- (no CPE)range: < 1.8.5-lp152.2.2.1
- (no CPE)range: < 0.44-lp152.4.2.1
- (no CPE)range: < 5.6.4.2+git20200318.49e98ff-lp152.2.2.1
- (no CPE)range: < 0.26.5-lp152.3.2.1
- (no CPE)range: < 0.12.5-lp152.2.2.1
- (no CPE)range: < 20200106-lp152.2.2.1
- (no CPE)range: < 6.1.10-lp152.2.2.1
- (no CPE)range: < 3.9-lp152.2.2.1
- (no CPE)range: < 4.12.14-8.38.1
- (no CPE)range: < 5.3.18-18.12.1
- (no CPE)range: < 4.12.14-16.22.1
- (no CPE)range: < 4.12.14-16.22.1
- (no CPE)range: < 5.3.18-24.9.1.9.2.6
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.2
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 1-3.3.1
- (no CPE)range: < 1-5.3.6
- (no CPE)range: < 1-1.3.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-10.13.1
- (no CPE)range: < 4.12.14-14.28.1
- (no CPE)range: < 4.12.14-10.13.1
- (no CPE)range: < 4.12.14-14.28.1
- (no CPE)range: < 4.12.14-8.38.1
- (no CPE)range: < 5.3.18-18.12.1
- (no CPE)range: < 4.12.14-16.22.1
- (no CPE)range: < 4.12.14-16.22.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-10.13.1
- (no CPE)range: < 4.12.14-14.28.1
- (no CPE)range: < 4.12.14-8.38.1
- (no CPE)range: < 5.3.18-18.12.1
- (no CPE)range: < 4.12.14-16.22.1
- (no CPE)range: < 4.12.14-16.22.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 5.3.18-24.9.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-122.29.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-10.13.1
- (no CPE)range: < 4.12.14-14.28.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 4.12.14-197.48.1
- (no CPE)range: < 4.12.14-150.66.1
- (no CPE)range: < 1-8.3.1
Linux Kernel/kernelv5
Range: before 5.8-rc6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000