{"vulnerability": "cve-2020-29374", "sightings": [{"uuid": "53b1c5e2-8373-4aa0-8dcb-260b9d134cbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29374", "type": "seen", "source": "https://t.me/cibsecurity/16904", "content": "\u203c CVE-2020-29374 \u203c\n\nAn issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended write access, aka CID-17839856fd58.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-28T12:50:43.000000Z"}, {"uuid": "54ed6702-ab78-4490-b766-cafd5458d7ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29374", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3mnxbqve2rj2v", "content": "Askar Safin posted a patchset turning vmsplice() into a thin wrapper over preadv2/pwritev2: ~200 lines gone, ~30 added. Hellwig notes it's one of the few paths that can dirty file-backed pages without telling the filesystem. CVE-2020-29374 sits in its history. Wrapper, or kill it entirely?\n#kernel", "creation_timestamp": "2026-06-10T17:54:01.564721Z"}]}