CVE-2020-29372: An issue was discovered in do_madvise in mm/madvise.c in the Linux kernel before 5.6.8.
An issue was discovered in do_madvise in mm/madvise.c in the Linux kernel before 5.6.8. There is a race condition between coredump operations and the IORING_OP_MADVISE implementation, aka CID-bc0c4d1e176e.
Security readout for executives and security teams
CVE-2020-29372 is a local Linux kernel race condition. A user who already has low-privileged access could cause an availability impact, but the CVSS data does not indicate confidentiality or integrity loss. It is an operational risk mainly for shared, multi-user, or container-host systems running affected kernels. Exposure is limited to Linux systems running affected kernel code before the upstream 5.6.8 fix or without a vendor backport. Highest concern is systems where untrusted or semi-trusted local users, workloads, containers, or tenants can execute code. Schedule remediation through normal kernel patching, with faster handling for shared infrastructure. This is not described as remotely exploitable or actively exploited in the supplied sources, but availability impact on multi-tenant systems can still be business-relevant. Mitigation focus: Update to a kernel containing the upstream fix or a vendor backport.; Prioritize shared hosts, container platforms, and multi-user Linux servers.; Check distribution advisories before assuming version numbers map directly to exposure..
Prepared
Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.
Potential ATT&CK relevance
Conservative CVE-to-ATT&CK context
These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.
ATT&CK lookup starting points
Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.
cwe · low confidence lookup
CWE-362: Exact CWE lookup
Use the exact CWE identifier as the starting point before reviewing related ATT&CK behavior. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.
These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.
We collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.
CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.
CWE-362 · source CWE mapping
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') represents a recurring weakness pattern that can create exploitable paths when design, validation, or implementation controls are missing.