CVE-2020-36790

MEDIUM

Linux Kernel 5.7-5.8.5 - Use-After-Free in NVMe Target Model Number Handling

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a memory leak We forgot to free new_model_number

References (2)

Core 2

Scores

CVSS v3 5.5
EPSS 0.0014
EPSS Percentile 3.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-401
Status published
Products (8)
Linux/Linux < 5.7
Linux/Linux 013b7ebe5a0d70e2a02fd225174595e79c591b3e - 227064b2ca9e62270ed445665ae849c73f0dfb2c
Linux/Linux 013b7ebe5a0d70e2a02fd225174595e79c591b3e - 382fee1a8b623e2546a3e15e80517389e0e0673e
Linux/Linux 5.7
Linux/Linux 5.8.6 - 5.8.*
Linux/Linux 5.9
linux/linux_kernel 5.9 rc1 (2 CPE variants)
linux/linux_kernel 5.7 - 5.8.6
Published May 01, 2025
Tracked Since Feb 18, 2026