CVE-2018-20669

CVSS v3.1 7.8 (High)

CVSS v2.0 7.2 (High)

EPSS 0.04 % (5^th)

Affected Products 7

Advisories 17

An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A local attacker can craft a malicious IOCTL function call to overwrite arbitrary kernel memory, resulting in a Denial of Service or privilege escalation.

Weaknesses

CWE-20: Improper Input Validation

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2019-03-21 16:00:37
(5 years ago)
Updated Date: 2023-04-11 18:16:08
(17 months ago)

Affected Products

Canonical

Ubuntu Linux

Linux

Linux Kernel

Netapp

Configuration #1

AND

		CPE23	From	Up To
OR
	Linux Kernel from 4.13 version and prior 4.14.185 version	cpe:2.3:o:linux:linux_kernel	>= 4.13	< 4.14.185
OR
	Running on/with
	Linux Kernel from 4.15 version and prior 4.19.129 version	cpe:2.3:o:linux:linux_kernel	>= 4.15	< 4.19.129
OR
	Running on/with
	Linux Kernel from 4.20 version and prior 5.0 version	cpe:2.3:o:linux:linux_kernel	>= 4.20	< 5.0

Configuration #2

AND

		CPE23
OR
	Canonical Ubuntu Linux 14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04:::*:esm
OR
	Running on/with
	Canonical Ubuntu Linux 16.04	cpe:2.3:o:canonical:ubuntu_linux:16.04:::*:esm
OR
	Running on/with
	Canonical Ubuntu Linux 18.04	cpe:2.3:o:canonical:ubuntu_linux:18.04:::*:lts

Configuration #3

AND

		CPE23
OR
	Netapp Hci Management Node	cpe:2.3:a:netapp:hci_management_node:-
OR
	Running on/with
	Netapp Snapprotect	cpe:2.3:a:netapp:snapprotect:-
OR
	Running on/with
	Netapp Solidfire	cpe:2.3:a:netapp:solidfire:-

Configuration #4

AND

		CPE23
OR
	Netapp Cn1610 Firmware	cpe:2.3:o:netapp:cn1610_firmware:-
OR
	Running on/with
	Netapp Cn1610	cpe:2.3:h:netapp:cn1610:-