CVE-2020-29374
LOW3.6EPSS 0.02%linux-4.19 - security update
發布日:2020/11/28修改日:2026/3/9
也稱為:DEBIAN-CVE-2020-29374DEBIAN-CVE-2020-36322DEBIAN-CVE-2021-20317DEBIAN-CVE-2021-20321DEBIAN-CVE-2021-20322DEBIAN-CVE-2021-22600DEBIAN-CVE-2021-28711DEBIAN-CVE-2021-28712DEBIAN-CVE-2021-28713DEBIAN-CVE-2021-28714DEBIAN-CVE-2021-28715DEBIAN-CVE-2021-28950DEBIAN-CVE-2021-3744DEBIAN-CVE-2021-3760DEBIAN-CVE-2021-3764DEBIAN-CVE-2021-3772DEBIAN-CVE-2021-38300DEBIAN-CVE-2021-39685DEBIAN-CVE-2021-39686DEBIAN-CVE-2021-39698DEBIAN-CVE-2021-39713DEBIAN-CVE-2021-4002DEBIAN-CVE-2021-4083DEBIAN-CVE-2021-4135DEBIAN-CVE-2021-4155DEBIAN-CVE-2021-41864DEBIAN-CVE-2021-4203DEBIAN-CVE-2021-42739DEBIAN-CVE-2021-43389DEBIAN-CVE-2021-43975DEBIAN-CVE-2021-43976DEBIAN-CVE-2021-44733DEBIAN-CVE-2021-45095DEBIAN-CVE-2021-45469DEBIAN-CVE-2021-45480DEBIAN-CVE-2022-0001DEBIAN-CVE-2022-0002DEBIAN-CVE-2022-0322DEBIAN-CVE-2022-0330DEBIAN-CVE-2022-0435DEBIAN-CVE-2022-0487DEBIAN-CVE-2022-0492DEBIAN-CVE-2022-0617DEBIAN-CVE-2022-22942DEBIAN-CVE-2022-24448DEBIAN-CVE-2022-24959DEBIAN-CVE-2022-25258DEBIAN-CVE-2022-25375DLA-2941-1
描述
An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended write access, aka CID-17839856fd58.
受影響套件(3)
- Debian/linuxfrom 0, < 5.7.6-1
- Debian/linuxfrom 0, < 4.19.232-1
- Debian/linux-4.19from 0, < 4.19.232-1~deb9u1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | LOW3.6 | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N |