{"id":"CVE-2020-11884","details":"In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enable_sacf_uaccess in arch/s390/lib/uaccess.c that fails to protect against a concurrent page table upgrade, aka CID-3f777e19d171. A crash could also occur.","modified":"2026-03-15T21:45:11.225905Z","published":"2020-04-29T13:15:11.647Z","references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3TZBP2HINNAX7HKHCOUMIFVQPV6GWMCZ/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AQUVKC3IPUC5B374VVAZV4J5P3GAUGSW/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKVJMS4GQRH5SO35WM5GINCFAGXQ3ZW6/"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20200608-0001/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4342-1/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2020/dsa-4667"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4343-1/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4345-1/"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=215d1f3928713d6eaec67244bcda72105b898000"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3f777e19d171670ab558a6d5e6b1ac7f9b6c574f"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"3f777e19d171670ab558a6d5e6b1ac7f9b6c574f"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"3f777e19d171670ab558a6d5e6b1ac7f9b6c574f"}]}],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"4.15"},{"fixed":"4.19.119"}]},{"events":[{"introduced":"4.20"},{"fixed":"5.4.36"}]},{"events":[{"introduced":"5.5"},{"fixed":"5.6.8"}]},{"events":[{"introduced":"0"},{"last_affected":"16.04"}]},{"events":[{"introduced":"0"},{"last_affected":"18.04"}]},{"events":[{"introduced":"0"},{"last_affected":"19.10"}]},{"events":[{"introduced":"0"},{"last_affected":"20.04"}]},{"events":[{"introduced":"0"},{"last_affected":"10.0"}]},{"events":[{"introduced":"0"},{"last_affected":"30"}]},{"events":[{"introduced":"0"},{"last_affected":"31"}]},{"events":[{"introduced":"0"},{"last_affected":"32"}]},{"events":[{"introduced":"4.19"},{"last_affected":"5.6.7"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-11884.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}