{"id":"CVE-2020-25656","details":"A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality.","aliases":["A-174904705","PUB-A-174904705"],"modified":"2026-04-16T04:35:17.153798998Z","published":"2020-12-02T01:15:12.607Z","related":["SUSE-SU-2020:3272-1","SUSE-SU-2020:3273-1","SUSE-SU-2020:3281-1","SUSE-SU-2020:3326-1","SUSE-SU-2020:3484-1","SUSE-SU-2020:3491-1","SUSE-SU-2020:3501-1","SUSE-SU-2020:3503-1","SUSE-SU-2020:3512-1","SUSE-SU-2020:3513-1","SUSE-SU-2020:3522-1","SUSE-SU-2020:3532-1","SUSE-SU-2020:3544-1","SUSE-SU-2021:14630-1","openSUSE-SU-2020:1906-1","openSUSE-SU-2020:2112-1","openSUSE-SU-2021:0242-1","openSUSE-SU-2024:10728-1","openSUSE-SU-2024:13704-1"],"references":[{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00015.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00027.html"},{"type":"ADVISORY","url":"https://www.starwindsoftware.com/security/sw-20210325-0006/"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1888726"},{"type":"FIX","url":"https://lkml.org/lkml/2020/10/29/528"},{"type":"EVIDENCE","url":"https://lkml.org/lkml/2020/10/16/84"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"5.10"}]},{"events":[{"introduced":"0"},{"last_affected":"5.10-rc1"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]},{"events":[{"introduced":"0"},{"last_affected":"v8-build12533"}]},{"events":[{"introduced":"0"},{"last_affected":"v8-build12658"}]},{"events":[{"introduced":"0"},{"last_affected":"v8-build12859"}]},{"events":[{"introduced":"0"},{"last_affected":"v8-build13170"}]},{"events":[{"introduced":"0"},{"last_affected":"v8-build13586"}]},{"events":[{"introduced":"0"},{"last_affected":"v8-build13861"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-25656.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N"}]}