summaryrefslogtreecommitdiffstats
path: root/retired/CVE-2019-13233
blob: 31393757dc10cfbe43afef2217fe82ff26245da2 (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15

Description: x86/insn-eval: Fix use-after-free access to LDT entry
References:
 https://bugs.chromium.org/p/project-zero/issues/detail?id=1879
Notes:
 carnil> Introduced in 670f928ba09b ("x86/insn-eval: Add utility
 carnil> function to get segment descriptor") first included in 4.15-rc1
Bugs:
upstream: released (5.2-rc4) [de9f869616dd95e95c00bdd6b0fcd3421e8a4323]
4.19-upstream-stable: released (4.19.50) [b598ddc7b9fc87b09bdadb63abf92b4ba46cd385]
4.9-upstream-stable: N/A "Vulnerable code introduced later"
3.16-upstream-stable: N/A "Vulnerable code introduced later"
sid: released (5.2.6-1)
4.19-buster-security: released (4.19.37-5+deb10u2) [bugfix/x86/x86-insn-eval-Fix-use-after-free-access-to-LDT-entry.patch]
4.9-stretch-security: N/A "Vulnerable code introduced later"
3.16-jessie-security: N/A "Vulnerable code introduced later"

© 2014-2024 Faster IT GmbH | imprint | privacy policy