CVE-2020-11565 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2020-11565 Interim 1 11 2026-03-05T05:52:34Z current 2021-05-30T14:39:22Z 2026-03-05T05:52:34Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2020-11565 An issue was discovered in the Linux kernel through 5.6.2. mpol_parse_str in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, aka CID-aa9f7d5172fa. NOTE: Someone in the security community disagrees that this is a vulnerability because the issue “is a bug in parsing mount options which can only be specified by a privileged user, so triggering the bug does not grant any powers not already held.” The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Liberty Linux 7 SUSE Liberty Linux 8 bpftool-3.10.0-1160.el7 bpftool-4.18.0-240.el8 kernel-3.10.0-1160.el7 kernel-4.18.0-240.el8 kernel-abi-whitelists-3.10.0-1160.el7 kernel-abi-whitelists-4.18.0-240.el8 kernel-core-4.18.0-240.el8 kernel-cross-headers-4.18.0-240.el8 kernel-debug-3.10.0-1160.el7 kernel-debug-4.18.0-240.el8 kernel-debug-core-4.18.0-240.el8 kernel-debug-devel-3.10.0-1160.el7 kernel-debug-devel-4.18.0-240.el8 kernel-debug-modules-4.18.0-240.el8 kernel-debug-modules-extra-4.18.0-240.el8 kernel-devel-3.10.0-1160.el7 kernel-devel-4.18.0-240.el8 kernel-doc-3.10.0-1160.el7 kernel-doc-4.18.0-240.el8 kernel-headers-3.10.0-1160.el7 kernel-headers-4.18.0-240.el8 kernel-modules-4.18.0-240.el8 kernel-modules-extra-4.18.0-240.el8 kernel-tools-3.10.0-1160.el7 kernel-tools-4.18.0-240.el8 kernel-tools-libs-3.10.0-1160.el7 kernel-tools-libs-4.18.0-240.el8 kernel-tools-libs-devel-3.10.0-1160.el7 kernel-tools-libs-devel-4.18.0-240.el8 perf-3.10.0-1160.el7 perf-4.18.0-240.el8 python-perf-3.10.0-1160.el7 python3-perf-4.18.0-240.el8 bpftool-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-abi-whitelists-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-debug-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-debug-devel-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-devel-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-doc-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-headers-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-tools-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-tools-libs-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 kernel-tools-libs-devel-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 perf-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 python-perf-3.10.0-1160.el7 as a component of SUSE Liberty Linux 7 bpftool-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-abi-whitelists-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-core-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-cross-headers-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-debug-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-debug-core-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-debug-devel-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-debug-modules-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-debug-modules-extra-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-devel-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-doc-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-headers-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-modules-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-modules-extra-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-tools-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-tools-libs-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 kernel-tools-libs-devel-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 perf-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 python3-perf-4.18.0-240.el8 as a component of SUSE Liberty Linux 8 An issue was discovered in the Linux kernel through 5.6.2. mpol_parse_str in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, aka CID-aa9f7d5172fa. NOTE: Someone in the security community disagrees that this is a vulnerability because the issue “is a bug in parsing mount options which can only be specified by a privileged user, so triggering the bug does not grant any powers not already held.” CVE-2020-11565 SUSE Liberty Linux 7:bpftool-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-abi-whitelists-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-debug-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-debug-devel-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-devel-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-doc-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-headers-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-tools-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-tools-libs-3.10.0-1160.el7 SUSE Liberty Linux 7:kernel-tools-libs-devel-3.10.0-1160.el7 SUSE Liberty Linux 7:perf-3.10.0-1160.el7 SUSE Liberty Linux 7:python-perf-3.10.0-1160.el7 SUSE Liberty Linux 8:bpftool-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-abi-whitelists-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-core-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-cross-headers-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-debug-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-debug-core-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-debug-devel-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-debug-modules-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-debug-modules-extra-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-devel-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-doc-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-headers-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-modules-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-modules-extra-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-tools-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-tools-libs-4.18.0-240.el8 SUSE Liberty Linux 8:kernel-tools-libs-devel-4.18.0-240.el8 SUSE Liberty Linux 8:perf-4.18.0-240.el8 SUSE Liberty Linux 8:python3-perf-4.18.0-240.el8 moderate 3.6 AV:L/AC:L/Au:N/C:N/I:P/A:P 4.8 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:H