CVE-2020-27638
Publication date 22 October 2020
Last updated 24 July 2024
Ubuntu priority
receive.c in fastd before v21 allows denial of service (assertion failure) when receiving packets with an invalid type code.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| fastd | ||
| 20.04 LTS focal |
Fixed 18-3ubuntu0.1
|
|
| 18.04 LTS bionic |
Fixed 18-3ubuntu0.18.04.1
|
|
| 16.04 LTS xenial |
Fixed 17-4ubuntu0.1
|
|
| 14.04 LTS trusty | Not in release |
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
7.5 · High
|
| Attack vector | Network |
| Attack complexity | Low |
| Privileges required | None |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | None |
| Integrity impact | None |
| Availability impact | High |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-4610-1
- fastd vulnerability
- 29 October 2020
- USN-4718-1
- fastd vulnerability
- 2 February 2021