Vulnerability Details : CVE-2018-20669
Potential exploit
An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A local attacker can craft a malicious IOCTL function call to overwrite arbitrary kernel memory, resulting in a Denial of Service or privilege escalation.
Vulnerability category: Input validationGain privilegeDenial of service
Products affected by CVE-2018-20669
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
- cpe:2.3:o:netapp:cn1610_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
- cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*
- cpe:2.3:a:netapp:snapprotect:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-20669
0.10%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 24 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-20669
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST | |
|
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2018-20669
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-20669
-
https://security.netapp.com/advisory/ntap-20190404-0002/
March 27th 2019 Linux Kernel Vulnerabilities in NetApp Products | NetApp Product SecurityThird Party Advisory
-
https://access.redhat.com/security/cve/cve-2018-20669
CVE-2018-20669 - Red Hat Customer PortalThird Party Advisory
-
http://www.openwall.com/lists/oss-security/2019/01/23/6
oss-security - Linux Kernel: Missing access_ok() checks in IOCTL function (gpu/drm/i915 Driver)Exploit;Mailing List;Patch;Third Party Advisory
-
http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00042.html
[security-announce] openSUSE-SU-2019:0203-1: important: Security updateMailing List;Third Party Advisory
-
http://www.securityfocus.com/bid/106748
Linux Kernel CVE-2018-20669 Local Privilege Escalation VulnerabilityBroken Link;Third Party Advisory;VDB Entry
-
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/log/drivers/gpu/drm/i915/i915_gem_execbuffer.c
kernel/git/torvalds/linux.git - Linux kernel source treeVendor Advisory;Release Notes
-
https://usn.ubuntu.com/4485-1/
USN-4485-1: Linux kernel vulnerabilities | Ubuntu security notices | UbuntuThird Party Advisory
-
https://support.f5.com/csp/article/K32059550
Third Party Advisory
Jump to