summaryrefslogtreecommitdiffstats
path: root/retired/CVE-2018-8781
blob: 6e2a4f03aacf297e28e10a6001b615959a22d91c (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14

Description: Integer overflow in drivers/gpu/drm/udl/udl_fb.c:udl_fb_mmap() can allow attackers to execute code in kernel space
References:
 https://patchwork.freedesktop.org/patch/211845/
Notes:
 bwh> udl was added in 3.4, and wheezy has DRM from 3.4 so it *is* affected.
Bugs:
upstream: released (4.16-rc7) [3b82a4db8eaccce735dffd50b4d4e1578099b8e8]
4.9-upstream-stable: released (4.9.91) [4ac9ab4f5f45d1ad0585c7bfa9ccff43b9984045]
3.16-upstream-stable: released (3.16.57) [c2f377300d828234a16a6dc35402bc313bb15bed]
3.2-upstream-stable: N/A "Vulnerable code not present"
sid: released (4.15.17-1)
4.9-stretch-security: released (4.9.88-1) [bugfix/all/drm-udl-properly-check-framebuffer-mmap-offsets.patch]
3.16-jessie-security: released (3.16.56-1) [bugfix/all/drm-udl-properly-check-framebuffer-mmap-offsets.patch]
3.2-wheezy-security: released (3.2.101-1) [bugfix/all/drm-udl-properly-check-framebuffer-mmap-offsets.patch]

© 2014-2024 Faster IT GmbH | imprint | privacy policy