CVE-2020-29374
Description
An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended write access, aka CID-17839856fd58.
Risk Information
Base Score
3.6
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.019
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-4749-1) linux-image-gcp_4.15.0.1093.94_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-gke_4.15.0.1079.83_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-gke_4.15.0.1093.94_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-kvm_4.15.0.1085.81_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-oem_4.15.0.136.132_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-azure_4.15.0.1108.99_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-oracle_4.15.0.1065.53_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-aws-hwe_4.15.0.1094.87_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-generic_4.15.0.136.123_i386.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-generic_4.15.0.136.123_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-virtual_4.15.0.136.123_i386.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-virtual_4.15.0.136.123_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-dell300x_4.15.0.1012.14_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-gke-4.15_4.15.0.1079.83_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-lowlatency_4.15.0.136.123_i386.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-lowlatency_4.15.0.136.123_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-aws-lts-18.04_4.15.0.1094.97_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-gcp-lts-18.04_4.15.0.1093.111_amd64.deb | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.50.1.noarch.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.50.1.noarch.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.66.2.noarch.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.66.2.noarch.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.66.2.noarch.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.66.2.x86_64.rpm | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-1079-gke_4.15.0-1079.84_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-1085-kvm_4.15.0-1085.87_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-1093-gcp_4.15.0-1093.106_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-1094-aws_4.15.0-1094.101_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-1108-azure_4.15.0-1108.120_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-1065-oracle_4.15.0-1065.73_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-136-generic_4.15.0-136.140_i386.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-136-generic_4.15.0-136.140_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-1012-dell300x_4.15.0-1012.16_amd64.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-136-lowlatency_4.15.0-136.140_i386.deb | Linux |
| Linux kernel (USN-4749-1) linux-image-4.15.0-136-lowlatency_4.15.0-136.140_amd64.deb | Linux |
| kernel Security Update (ALAS-2021-1636) kernel-livepatch-4.14.232-176.381-1.0-0.amzn2.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234