CVE-2019-18683

CVSS v3.1 7 (High)

CVSS v2.0 6.9 (Medium)

EPSS 0.04 % (11^th)

Affected Products 23

Advisories 20

NVD Status Analyzed

An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions where local users have /dev/video0 access, but only if the driver happens to be loaded. There are multiple race conditions during streaming stopping in this driver (part of the V4L2 subsystem). These issues are caused by wrong mutex locking in vivid_stop_generating_vid_cap(), vivid_stop_generating_vid_out(), sdr_cap_stop_streaming(), and the corresponding kthreads. At least one of these race conditions leads to a use-after-free.

Weaknesses

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-416: Use After Free

CVE Status: PUBLISHED
NVD Status: Analyzed
CNA: MITRE
Published Date: 2019-11-04 16:15:11
(4 years ago)
Updated Date: 2024-06-07 13:55:43
(3 months ago)

Affected Products

Netapp

Opensuse

Leap

Configuration #1

	CPE23	From	Up To
Linux Kernel from 3.18 version and prior 4.4.204 version	cpe:2.3:o:linux:linux_kernel	>= 3.18	< 4.4.204
Linux Kernel from 4.5 version and prior 4.9.204 version	cpe:2.3:o:linux:linux_kernel	>= 4.5	< 4.9.204
Linux Kernel from 4.10 version and prior 4.14.157 version	cpe:2.3:o:linux:linux_kernel	>= 4.10	< 4.14.157
Linux Kernel from 4.15 version and prior 4.19.87 version	cpe:2.3:o:linux:linux_kernel	>= 4.15	< 4.19.87
Linux Kernel from 4.20 version and prior 5.3.14 version	cpe:2.3:o:linux:linux_kernel	>= 4.20	< 5.3.14
Linux Kernel from 5.4 version and prior 5.4.1 version	cpe:2.3:o:linux:linux_kernel	>= 5.4	< 5.4.1

Configuration #2

		CPE23	From	Up To
	Canonical Ubuntu Linux 14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04:::*:esm
	Canonical Ubuntu Linux 16.04	cpe:2.3:o:canonical:ubuntu_linux:16.04:::*:esm
	Canonical Ubuntu Linux 18.04	cpe:2.3:o:canonical:ubuntu_linux:18.04:::*:lts
	Canonical Ubuntu Linux 19.10	cpe:2.3:o:canonical:ubuntu_linux:19.10

Configuration #3

		CPE23	From	Up To
	Opensuse Leap 15.1	cpe:2.3:o:opensuse:leap:15.1

Configuration #4

	CPE23	From	Up To
Netapp Active Iq Unified Manager for Vmware Vsphere	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere
Netapp Cloud Backup	cpe:2.3:a:netapp:cloud_backup:-
Netapp Data Availability Services	cpe:2.3:a:netapp:data_availability_services:-
Netapp E-series Santricity Os Controller from 11.0.0 version and 11.70.1 and prior versions	cpe:2.3:a:netapp:e-series_santricity_os_controller	>= 11.0.0	<= 11.70.1
Netapp Element Software	cpe:2.3:a:netapp:element_software:-
Netapp Hci Management Node	cpe:2.3:a:netapp:hci_management_node:-
Netapp Solidfire	cpe:2.3:a:netapp:solidfire:-
Netapp Steelstore Cloud Integrated Storage	cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-

Configuration #5

		CPE23	From	Up To
	Broadcom Fabric Operating System	cpe:2.3:o:broadcom:fabric_operating_system:-

Configuration #6

AND

		CPE23
OR
	Netapp A700s Firmware	cpe:2.3:o:netapp:a700s_firmware:-
OR
	Running on/with
	Netapp A700s	cpe:2.3:h:netapp:a700s:-

Configuration #7

AND

		CPE23
OR
	Netapp 8300 Firmware	cpe:2.3:o:netapp:8300_firmware:-
OR
	Running on/with
	Netapp 8300	cpe:2.3:h:netapp:8300:-

Configuration #8

AND

		CPE23
OR
	Netapp 8700 Firmware	cpe:2.3:o:netapp:8700_firmware:-
OR
	Running on/with
	Netapp 8700	cpe:2.3:h:netapp:8700:-

Configuration #9

AND

		CPE23
OR
	Netapp A400 Firmware	cpe:2.3:o:netapp:a400_firmware:-
OR
	Running on/with
	Netapp A400	cpe:2.3:h:netapp:a400:-

Configuration #10

AND

		CPE23
OR
	Netapp H610s Firmware	cpe:2.3:o:netapp:h610s_firmware:-
OR
	Running on/with
	Netapp H610s	cpe:2.3:h:netapp:h610s:-

Configuration #11

		CPE23	From	Up To
	Debian Linux 8.0	cpe:2.3:o:debian:debian_linux:8.0