CVE-2019-20908

Published: Jul 15, 2020

Modified: Aug 5, 2024

PUBLISHED

Description

An issue was discovered in drivers/firmware/efi/efi.c in the Linux kernel before 5.4. Incorrect access permissions for the efivar_ssdt ACPI variable could be used by attackers to bypass lockdown or secure boot restrictions, aka CID-1957a85b0032.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.zx2c4.com/american-unsigned-language/tree/american-unsigned-language.sh

x_refsource_MISC

https://mailarchives.bentasker.co.uk/Mirrors/OSSSec/2020/06-Jun/msg00035.html

x_refsource_MISC

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1957a85b0032a81e6482ca4aab883643b8dae06e

x_refsource_MISC

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4

x_refsource_MISC

[oss-security] 20200720 Re: Re: lockdown bypass on ubuntu 18.04's 4.15 kernel for loading unsigned modules

mailing-list

x_refsource_MLIST

USN-4427-1

vendor-advisory

x_refsource_UBUNTU

[oss-security] 20200729 multiple secure boot grub2 and linux kernel vulnerabilities

mailing-list

x_refsource_MLIST

[oss-security] 20200730 Re: UEFI SecureBoot bypass fixes rolled out to kernels below radar

mailing-list

x_refsource_MLIST

[oss-security] 20200730 UEFI SecureBoot bypass fixes rolled out to kernels below radar

mailing-list

x_refsource_MLIST

USN-4439-1

vendor-advisory

x_refsource_UBUNTU

USN-4426-1

vendor-advisory

x_refsource_UBUNTU

USN-4440-1

vendor-advisory

x_refsource_UBUNTU

openSUSE-SU-2020:1153

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-20908

Description

Affected Products

References