Unrated severityNVD Advisory· Published Mar 26, 2021· Updated Aug 4, 2024

CVE-2020-35508

Description

A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. A local attacker is able to abuse this flaw to bypass checks to send any signal to a privileged process.

Affected products

Linux/Linux kerneldescription
osv-coords
pkg:rpm/almalinux/kernel-tools-libs-devel
Range: < 4.18.0-305.el8

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
github.com/torvalds/linux/commit/b4e00444cab4c3f3fec876dc0cccc8cbb0d1a948mitrex_refsource_MISC
security.netapp.com/advisory/ntap-20210513-0006/mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000