Bug 1170030 (CVE-2020-11884) - VUL-0: CVE-2020-11884: kernel-source: s390/mm: fix page table upgrade vs 2ndary address mode accesses
Summary: VUL-0: CVE-2020-11884: kernel-source: s390/mm: fix page table upgrade vs 2nda...
Status: VERIFIED FIXED
Alias: CVE-2020-11884
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P2 - High : Major
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/258143/
Whiteboard: CVSSv3.1:SUSE:CVE-2020-11884:7.0:(AV...
Keywords:
Depends on:
Blocks:
 
Reported: 2020-04-21 08:24 UTC by Wolfgang Frisch
Modified: 2024-06-25 14:44 UTC (History)
9 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Comment 9 Wolfgang Frisch 2020-04-29 04:31:30 UTC 
CVE-2020-11884

It was discovered that the Linux kernel for s390 systems did not
properly perform page table upgrades for kernel sections that use
secondary address mode. A local attacker could use this to cause a
denial of service (system crash) or execute arbitrary code.

References:
https://nvd.nist.gov/nvd.cfm?cvename=CVE-2020-11884
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11884
https://lists.debian.org/debian-security-announce/2020/msg00071.html
https://people.canonical.com/~ubuntu-security/cve/2020/CVE-2020-11884.html
Comment 11 Petr Tesařík 2020-04-29 06:43:53 UTC 
(In reply to Wolfgang Frisch from comment #9)
> References:
> https://nvd.nist.gov/nvd.cfm?cvename=CVE-2020-11884

CVE ID Not Found

> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11884

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. 

> https://lists.debian.org/debian-security-announce/2020/msg00071.html
> https://people.canonical.com/~ubuntu-security/cve/2020/CVE-2020-11884.html

OK, these two are public. I've pushed the fix through my SLE15-SP2/for-next branch.

Thanks!
Comment 12 Wolfgang Frisch 2020-04-29 06:58:08 UTC 
Please reassign completed bugs to security-team@suse.de
Comment 14 LTC BugProxy 2020-05-15 11:51:14 UTC 
------- Comment From tstaudt@de.ibm.com 2020-05-11 11:02 EDT-------
Hello SUSE,

should this be fixed with the following entry
"
Tue Apr 28 16:57:56 CEST 2020 - ptesarik@suse.cz

- s390/mm: fix page table upgrade vs 2ndary address mode accesses
(bsc#1170030 CVE-2020-11884).
- commit 0b0d8cd
"
in SLES 15 SP2 Snapshot15?
Thanks.
Comment 15 Petr Tesařík 2020-05-15 12:43:22 UTC 
(In reply to LTC BugProxy from comment #14)
> ------- Comment From tstaudt@de.ibm.com 2020-05-11 11:02 EDT-------
> Hello SUSE,
> 
> should this be fixed with the following entry
> "
> Tue Apr 28 16:57:56 CEST 2020 - ptesarik@suse.cz
> 
> - s390/mm: fix page table upgrade vs 2ndary address mode accesses
> (bsc#1170030 CVE-2020-11884).
> - commit 0b0d8cd
> "
> in SLES 15 SP2 Snapshot15?

Yes, that's the patch from this bug.
Comment 16 Marcus Meissner 2020-08-07 09:12:33 UTC 
considering it fixed
Comment 17 Ihno Krumreich 2021-03-18 12:30:19 UTC 
Verified by IBM.