First published: Sat Nov 28 2020(Updated: )
An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended write access, aka CID-17839856fd58.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
ubuntu/linux | <4.15.0-136.140 | 4.15.0-136.140 |
ubuntu/linux | <5.4.0-45.49 | 5.4.0-45.49 |
ubuntu/linux | <5.8~ | 5.8~ |
ubuntu/linux | <4.4.0-203.235 | 4.4.0-203.235 |
ubuntu/linux-aws | <4.15.0-1094.101 | 4.15.0-1094.101 |
ubuntu/linux-aws | <5.4.0-1022.22 | 5.4.0-1022.22 |
ubuntu/linux-aws | <4.4.0-1086.90 | 4.4.0-1086.90 |
ubuntu/linux-aws | <5.8~ | 5.8~ |
ubuntu/linux-aws | <4.4.0-1122.136 | 4.4.0-1122.136 |
ubuntu/linux-aws-5.0 | <5.8~ | 5.8~ |
ubuntu/linux-aws-5.3 | <5.8~ | 5.8~ |
ubuntu/linux-aws-5.4 | <5.4.0-1022.22~18.04.1 | 5.4.0-1022.22~18.04.1 |
ubuntu/linux-aws-5.4 | <5.8~ | 5.8~ |
ubuntu/linux-aws-hwe | <5.8~ | 5.8~ |
ubuntu/linux-aws-hwe | <4.15.0-1094.101~16.04.1 | 4.15.0-1094.101~16.04.1 |
ubuntu/linux-azure | <5.4.0-1023.23 | 5.4.0-1023.23 |
ubuntu/linux-azure | <4.15.0-1108.120~14.04.1 | 4.15.0-1108.120~14.04.1 |
ubuntu/linux-azure | <5.8~ | 5.8~ |
ubuntu/linux-azure | <4.15.0-1108.120~16.04.1 | 4.15.0-1108.120~16.04.1 |
ubuntu/linux-azure-4.15 | <4.15.0-1108.120 | 4.15.0-1108.120 |
ubuntu/linux-azure-4.15 | <5.8~ | 5.8~ |
ubuntu/linux-azure-5.3 | <5.8~ | 5.8~ |
ubuntu/linux-azure-5.4 | <5.4.0-1023.23~18.04.1 | 5.4.0-1023.23~18.04.1 |
ubuntu/linux-azure-5.4 | <5.8~ | 5.8~ |
ubuntu/linux-azure-edge | <5.8~ | 5.8~ |
ubuntu/linux-dell300x | <4.15.0-1012.16 | 4.15.0-1012.16 |
ubuntu/linux-dell300x | <5.8~ | 5.8~ |
ubuntu/linux-gcp | <5.4.0-1022.22 | 5.4.0-1022.22 |
ubuntu/linux-gcp | <5.8~ | 5.8~ |
ubuntu/linux-gcp | <4.15.0-1093.106~16.04.1 | 4.15.0-1093.106~16.04.1 |
ubuntu/linux-gcp-4.15 | <4.15.0-1093.106 | 4.15.0-1093.106 |
ubuntu/linux-gcp-4.15 | <5.8~ | 5.8~ |
ubuntu/linux-gcp-5.3 | <5.8~ | 5.8~ |
ubuntu/linux-gcp-5.4 | <5.4.0-1022.22~18.04.1 | 5.4.0-1022.22~18.04.1 |
ubuntu/linux-gcp-edge | <5.8~ | 5.8~ |
ubuntu/linux-gke-4.15 | <4.15.0-1079.84 | 4.15.0-1079.84 |
ubuntu/linux-gke-4.15 | <5.8~ | 5.8~ |
ubuntu/linux-gke-5.0 | <5.8~ | 5.8~ |
ubuntu/linux-gke-5.3 | <5.3.0-1032.34~18.04.1 | 5.3.0-1032.34~18.04.1 |
ubuntu/linux-gke-5.3 | <5.8~ | 5.8~ |
ubuntu/linux-gke-5.4 | <5.8~ | 5.8~ |
ubuntu/linux-gkeop | <5.8~ | 5.8~ |
ubuntu/linux-gkeop-5.4 | <5.8~ | 5.8~ |
ubuntu/linux-hwe | <5.8~ | 5.8~ |
ubuntu/linux-hwe | <4.15.0-136.140~16.04.1 | 4.15.0-136.140~16.04.1 |
ubuntu/linux-hwe-5.4 | <5.4.0-45.49~18.04.2 | 5.4.0-45.49~18.04.2 |
ubuntu/linux-hwe-5.4 | <5.8~ | 5.8~ |
ubuntu/linux-hwe-5.8 | <5.8~ | 5.8~ |
ubuntu/linux-hwe-edge | <5.8~ | 5.8~ |
ubuntu/linux-kvm | <4.15.0-1085.87 | 4.15.0-1085.87 |
ubuntu/linux-kvm | <5.4.0-1021.21 | 5.4.0-1021.21 |
ubuntu/linux-kvm | <5.8~ | 5.8~ |
ubuntu/linux-kvm | <4.4.0-1088.97 | 4.4.0-1088.97 |
ubuntu/linux-lts-trusty | <5.8~ | 5.8~ |
ubuntu/linux-lts-xenial | <4.4.0-203.235~14.04.1 | 4.4.0-203.235~14.04.1 |
ubuntu/linux-lts-xenial | <5.8~ | 5.8~ |
ubuntu/linux-oem | <5.8~ | 5.8~ |
ubuntu/linux-oem-5.10 | <5.8~ | 5.8~ |
ubuntu/linux-oem-5.6 | <5.6.0-1020.20 | 5.6.0-1020.20 |
ubuntu/linux-oem-5.6 | <5.8~ | 5.8~ |
ubuntu/linux-oem-osp1 | <5.8~ | 5.8~ |
ubuntu/linux-oracle | <4.15.0-1065.73 | 4.15.0-1065.73 |
ubuntu/linux-oracle | <5.4.0-1022.22 | 5.4.0-1022.22 |
ubuntu/linux-oracle | <5.8~ | 5.8~ |
ubuntu/linux-oracle | <4.15.0-1065.73~16.04.1 | 4.15.0-1065.73~16.04.1 |
ubuntu/linux-oracle-5.0 | <5.8~ | 5.8~ |
ubuntu/linux-oracle-5.3 | <5.8~ | 5.8~ |
ubuntu/linux-oracle-5.4 | <5.4.0-1022.22~18.04.1 | 5.4.0-1022.22~18.04.1 |
ubuntu/linux-raspi | <5.4.0-1016.17 | 5.4.0-1016.17 |
ubuntu/linux-raspi | <5.8~ | 5.8~ |
ubuntu/linux-raspi-5.4 | <5.4.0-1016.17~18.04.1 | 5.4.0-1016.17~18.04.1 |
ubuntu/linux-raspi-5.4 | <5.8~ | 5.8~ |
ubuntu/linux-raspi2 | <4.15.0-1079.84 | 4.15.0-1079.84 |
ubuntu/linux-raspi2 | <5.8~ | 5.8~ |
ubuntu/linux-raspi2 | <4.4.0-1146.156 | 4.4.0-1146.156 |
ubuntu/linux-raspi2-5.3 | <5.3.0-1030.32~18.04.2 | 5.3.0-1030.32~18.04.2 |
ubuntu/linux-raspi2-5.3 | <5.8~ | 5.8~ |
ubuntu/linux-riscv | <5.4.0-31.35 | 5.4.0-31.35 |
ubuntu/linux-riscv | <5.8~ | 5.8~ |
ubuntu/linux-snapdragon | <4.15.0-1096.105 | 4.15.0-1096.105 |
ubuntu/linux-snapdragon | <5.8~ | 5.8~ |
ubuntu/linux-snapdragon | <4.4.0-1150.160 | 4.4.0-1150.160 |
Linux Linux kernel | <5.7.3 | |
Debian Debian Linux | =9.0 | |
Debian Debian Linux | =10.0 | |
All of | ||
Netapp 500f Firmware | ||
Netapp 500f | ||
All of | ||
Netapp A250 Firmware | ||
Netapp A250 | ||
All of | ||
Netapp H410c Firmware | ||
Netapp H410c | ||
Netapp Solidfire \& Hci Management Node | ||
Netapp Solidfire \& Hci Storage Node | ||
Netapp Hci Compute Node Bios | ||
Netapp 500f Firmware | ||
Netapp 500f | ||
Netapp A250 Firmware | ||
Netapp A250 | ||
Netapp H410c Firmware | ||
Netapp H410c | ||
Netapp Baseboard Management Controller 500f Firmware | ||
Netapp Baseboard Management Controller 500f | ||
Netapp Baseboard Management Controller A250 Firmware | ||
Netapp Baseboard Management Controller A250 | ||
Netapp Baseboard Management Controller H410c Firmware | ||
Netapp Baseboard Management Controller H410c | ||
Google Android | ||
debian/linux | 5.10.223-1 6.1.106-3 6.1.99-1 6.10.6-1 6.10.7-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)