Your submission was sent successfully! Close

CVE-2020-29374

Published: 28 November 2020

An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended write access, aka CID-17839856fd58.

From the Ubuntu security team

It was discovered that the memory management subsystem in the Linux kernel did not properly handle copy-on-write operations in some situations. A local attacker could possibly use this to gain unintended write access to read-only memory pages.

Priority

Medium

CVSS 3 base score: 3.6

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-136.140)
focal
Released (5.4.0-45.49)
groovy Not vulnerable
(5.8.0-16.17)
precise Ignored
(was needs-triage ESM criteria)
trusty Ignored
(was needs-triage ESM criteria)
upstream
Released (5.8~rc1)
xenial
Released (4.4.0-203.235)
linux-aws
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1094.101)
focal
Released (5.4.0-1022.22)
groovy Not vulnerable
(5.8.0-1004.4)
precise Does not exist

trusty
Released (4.4.0-1086.90)
upstream
Released (5.8~rc1)
xenial
Released (4.4.0-1122.136)
linux-aws-5.0
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-aws-5.3)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-aws-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-aws-5.4)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-aws-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1022.22~18.04.1)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-aws-hwe
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial
Released (4.15.0-1094.101~16.04.1)
linux-azure
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-azure-5.3)
focal
Released (5.4.0-1023.23)
groovy Not vulnerable
(5.8.0-1004.4)
precise Does not exist

trusty
Released (4.15.0-1108.120~14.04.1)
upstream
Released (5.8~rc1)
xenial
Released (4.15.0-1108.120~16.04.1)
linux-azure-4.15
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1108.120)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-azure-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-azure-5.4)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-azure-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1023.23~18.04.1)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-azure-edge
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-azure-5.3)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-dell300x
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1012.16)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gcp
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gcp-5.3)
focal
Released (5.4.0-1022.22)
groovy Not vulnerable
(5.8.0-1002.2)
precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial
Released (4.15.0-1093.106~16.04.1)
linux-gcp-4.15
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1093.106)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gcp-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gcp-5.4)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gcp-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1022.22~18.04.1)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gcp-edge
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-gcp-5.3)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gke-4.15
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1079.84)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gke-5.0
Launchpad, Ubuntu, Debian
bionic Ignored
(was needed now end-of-life)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gke-5.3
Launchpad, Ubuntu, Debian
bionic
Released (5.3.0-1032.34~18.04.1)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gke-5.4
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(5.4.0-1025.25~18.04.1)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gkeop
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable
(5.4.0-1008.9)
groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-gkeop-5.4
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(5.4.0-1001.1)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-hwe
Launchpad, Ubuntu, Debian
bionic Ignored
(replaced by linux-hwe-5.4)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial
Released (4.15.0-136.140~16.04.1)
linux-hwe-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-45.49~18.04.2)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-hwe-5.8
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable
(5.8.0-23.24~20.04.1)
groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-hwe-edge
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-hwe-5.4)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Ignored
(superseded by linux-hwe)
linux-kvm
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1085.87)
focal
Released (5.4.0-1021.21)
groovy Not vulnerable
(5.8.0-1001.1)
precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial
Released (4.4.0-1088.97)
linux-lts-trusty
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

groovy Does not exist

precise Ignored
(was needs-triage ESM criteria)
trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-lts-xenial
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

groovy Does not exist

precise Does not exist

trusty
Released (4.4.0-203.235~14.04.1)
upstream
Released (5.8~rc1)
xenial Does not exist

linux-oem
Launchpad, Ubuntu, Debian
bionic Ignored
(was needed now end-of-life)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Ignored
(superseded by linux-hwe)
linux-oem-5.10
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Not vulnerable
(5.10.0-1008.9)
groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-oem-5.6
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.6.0-1020.20)
groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-oem-osp1
Launchpad, Ubuntu, Debian
bionic Ignored
(was needs-triage now end-of-life)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-oracle
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1065.73)
focal
Released (5.4.0-1022.22)
groovy Not vulnerable
(5.8.0-1001.1)
precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial
Released (4.15.0-1065.73~16.04.1)
linux-oracle-5.0
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-oracle-5.3)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-oracle-5.3
Launchpad, Ubuntu, Debian
bionic Ignored
(superseded by linux-oracle-5.4)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-oracle-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1022.22~18.04.1)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-raspi
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-1016.17)
groovy Not vulnerable
(5.4.0-1016.17)
precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-raspi-5.4
Launchpad, Ubuntu, Debian
bionic
Released (5.4.0-1016.17~18.04.1)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-raspi2
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1079.84)
focal Ignored
(replaced by linux-raspi)
groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial
Released (4.4.0-1146.156)
linux-raspi2-5.3
Launchpad, Ubuntu, Debian
bionic
Released (5.3.0-1030.32~18.04.2)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-riscv
Launchpad, Ubuntu, Debian
bionic Does not exist

focal
Released (5.4.0-31.35)
groovy Not vulnerable
(5.8.0-1.1)
precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial Does not exist

linux-snapdragon
Launchpad, Ubuntu, Debian
bionic
Released (4.15.0-1096.105)
focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (5.8~rc1)
xenial
Released (4.4.0-1150.160)