Lucene search
MitreCVELIST:CVE-2019-18675HistoryNov 25, 2019 - 1:44 p.m.
CVE-2019-18675
2019-11-2513:44:26
mitre
www.cve.org
3
The Linux kernel through 5.3.13 has a start_offset+size Integer Overflow in cpia2_remap_buffer in drivers/media/usb/cpia2/cpia2_core.c because cpia2 has its own mmap implementation. This allows local users (with /dev/video0 access) to obtain read and write permissions on kernel physical pages, which can possibly result in a privilege escalation.
References
deshal3v.github.io/blog/kernel-research/mmap_exploitation
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=be83bbf806822b1b89e0a0f23cd87cddc409e429
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/log/drivers/media/usb/cpia2/cpia2_core.c
security.netapp.com/advisory/ntap-20200103-0001/
Related
debiancve
debiancve
CVE-2019-18675
2019-11-25 14:15:12
nvd
nvd
CVE-2019-18675
2019-11-25 14:15:12
prion
prion
Integer overflow
2019-11-25 14:15:00
ubuntucve
ubuntucve
CVE-2019-18675
2019-11-25 00:00:00
cve
cve
CVE-2019-18675
2019-11-25 14:15:12
redhatcve
redhatcve
CVE-2019-18675
2019-11-27 16:17:55
symantec
symantec
Linux Kernel Multiple Security Vulnerabilities
2019-11-05 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2018-0062
2018-06-21 00:00:00
Important Photon OS Security Update - PHSA-2018-0150
2018-06-21 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1713)
2020-07-03 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-2693)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:14354-1)
2021-06-09 00:00:00
nessus
nessus
EulerOS Virtualization 3.0.6.0 : kernel (EulerOS-SA-2020-1713)
2020-07-01 00:00:00
SUSE SLES11 Security Update : kernel (SUSE-SU-2020:14354-1)
2021-06-10 00:00:00
EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-2693)
2019-12-23 00:00:00
ibm
ibm