Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-20669

Опубликовано: 04 янв. 2019
Источник: redhat
CVSS3: 7.8
EPSS Низкий

Описание

An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A local attacker can craft a malicious IOCTL function call to overwrite arbitrary kernel memory, resulting in a Denial of Service or privilege escalation.

A flaw was found in the Linux kernel where a provided address with access_ok() is not checked before accessing userspace data in certain situations. Lack of such checks in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c may allow a local unprivileged attacker to possible escalate its privileges.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-altAffected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise Linux 8kernel-rtNot affected
Red Hat Enterprise MRG 2kernel-rtNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-358->CWE-391
https://bugzilla.redhat.com/show_bug.cgi?id=1669141kernel: missing access_ok() checks in i915_gem_execbuffer2_ioctl() results in priviledge escalation

EPSS

Процентиль: 28%
0.00098
Низкий

7.8 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-20669

CVSS3: 7.8
ubuntu
около 6 лет назад

An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A local attacker can craft a malicious IOCTL function call to overwrite arbitrary kernel memory, resulting in a Denial of Service or privilege escalation.

nvd логотип

CVE-2018-20669

CVSS3: 7.8
nvd
около 6 лет назад

An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A local attacker can craft a malicious IOCTL function call to overwrite arbitrary kernel memory, resulting in a Denial of Service or privilege escalation.

debian логотип

CVE-2018-20669

CVSS3: 7.8
debian
около 6 лет назад

An issue where a provided address with access_ok() is not checked was ...

github логотип

GHSA-3jgv-8wx7-rw7p

CVSS3: 7.8
github
около 3 лет назад

An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A local attacker can craft a malicious IOCTL function call to overwrite arbitrary kernel memory, resulting in a Denial of Service or privilege escalation.

suse-cvrf логотип

openSUSE-SU-2019:0203-1

suse-cvrf
около 6 лет назад

Security update for the Linux Kernel

EPSS

Процентиль: 28%
0.00098
Низкий

7.8 High

CVSS3