{"id":"CVE-2020-15852","details":"An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. An attacker may be granted the I/O port permissions of an unrelated task. This occurs because tss_invalidate_io_bitmap mishandling causes a loss of synchronization between the I/O bitmaps of TSS and Xen, aka CID-cadfad870154.","modified":"2026-05-12T04:02:00.354316Z","published":"2020-07-20T19:15:11.397Z","database_specific":{"unresolved_ranges":[{"source":"CPE_FIELD","extracted_events":[{"introduced":"5.5"},{"last_affected":"5.7.9"}],"cpe":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"},{"source":"CPE_FIELD","extracted_events":[{"last_affected":"4.13.1"}],"cpe":"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*"},{"source":"DESCRIPTION","extracted_events":[{"introduced":"5.5"},{"fixed":"5.7.9"}]}]},"references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2020/07/21/2"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20200810-0001/"},{"type":"FIX","url":"http://xenbits.xen.org/xsa/advisory-329.html"},{"type":"FIX","url":"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cadfad870154e14f745ec845708bc17d166065f2"},{"type":"FIX","url":"https://github.com/torvalds/linux/commit/cadfad870154e14f745ec845708bc17d166065f2"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"569dbb88e80deb68974ef6fdd6a13edb9d686261"},{"fixed":"cadfad870154e14f745ec845708bc17d166065f2"}],"database_specific":{"source":["DESCRIPTION","REFERENCES"],"extracted_events":[{"introduced":"0"},{"fixed":"4.13.x"}]}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-15852.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/torvalds/linux","events":[{"introduced":"0"},{"fixed":"cadfad870154e14f745ec845708bc17d166065f2"}],"database_specific":{"source":"REFERENCES"}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-15852.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}