CVE-2020-27777

NameCVE-2020-27777
DescriptionA flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase their privileges to that of a running kernel.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub advisories/code/issues, web search, more)
ReferencesDLA-2483-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
linux (PTS)buster4.19.249-2fixed
buster (security)4.19.269-1fixed
bullseye5.10.158-2fixed
bullseye (security)5.10.162-1fixed
bookworm6.1.15-1fixed
sid6.1.20-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
linuxsourcebuster4.19.160-1
linuxsource(unstable)5.9.6-1
linux-4.19sourcestretch4.19.160-2~deb9u1DLA-2483-1

Notes

[stretch] - linux <ignored> (Only an issue when Secure Boot is implemented)
https://git.kernel.org/linus/bd59380c5ba4147dcbaad3e582b55ccfd120b764
Search for package or bug name: Reporting problems