Уязвимость CVE-2020-29368: Информация

Описание

An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1.

Важность: HIGH (7,0) Вектор: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Исправленные пакеты

Ссылки на рекомендации, решения и инструменты

1. Подверженные конфигурации:

   1. Конфигурация 1

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      4.15

      End excliding

      4.19.129

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      5.5

      End excliding

      5.7.5

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      4.20

      End excliding

      5.4.48

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      4.10

      End excliding

      4.14.185

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      4.5.5

      End excliding

      4.9.228

      ---

      Конфигурация 2

      cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*

      ---

      Конфигурация 3

      cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*

      ---

      Конфигурация 4

      cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*

      ---