CVE-2020-29374Race Condition in Kernel

CWE-362Race ConditionCWE-863Incorrect Authorization16 documents10 sources
Severity
3.6LOWNVD
OSV7.8
EPSS
0.0%
top 94.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Linux KernelDebian LinuxDebian Linux+3 more
Timeline
PublishedNov 28
Latest updateAug 25

Description

An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended write access, aka CID-17839856fd58.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:NExploitability: 1.0 | Impact: 2.5

Affected Packages7 packages

NVDlinux/linux_kernel< 5.7.3
Debianlinux/linux_kernel< 5.7.6-1+3
Ubuntulinux/linux_kernel< 4.4.0-203.235+1
debiandebian/linux< linux 5.7.6-1 (bookworm)

Also affects: Debian Linux 10.0, 9.0

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

8
OSV
CVE-2020-29374: In multiple locations, there is a possible out of bounds write due to a race condition2023-08-01
GHSA
GHSA-7jw3-9qpg-fmp6: An issue was discovered in the Linux kernel before 52022-05-24
Kernel
mm/huge_memory: streamline COW logic in do_huge_pmd_wp_page()2022-03-24
Kernel
mm: streamline COW logic in do_swap_page()2022-03-24
Kernel
mm: optimize do_wp_page() for exclusive pages in the swapcache2022-03-24

📋Vendor Advisories

7
Chrome
Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2023-43672023-08-25
Android
CVE-2020-29374: COW2023-08-01
Ubuntu
Linux kernel vulnerabilities2021-02-25
Ubuntu
Linux kernel vulnerabilities2021-02-25
Microsoft
An issue was discovered in the Linux kernel before 5.7.3 related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation when used for a copy-on-write page does not properly cons2020-11-10