CVE-2020-27638
Publication date 22 October 2020
Last updated 25 August 2025
Ubuntu priority
Description
receive.c in fastd before v21 allows denial of service (assertion failure) when receiving packets with an invalid type code.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| fastd | ||
| 20.04 LTS focal |
Fixed 18-3ubuntu0.1
|
|
| 18.04 LTS bionic |
Fixed 18-3ubuntu0.18.04.1
|
|
| 16.04 LTS xenial |
Fixed 17-4ubuntu0.1
|
|
| 14.04 LTS trusty | Not in release |
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
7.5 · High
|
| Attack vector | Network |
| Attack complexity | Low |
| Privileges required | None |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | None |
| Integrity impact | None |
| Availability impact | High |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-4610-1
- fastd vulnerability
- 29 October 2020
- USN-4718-1
- fastd vulnerability
- 2 February 2021