Note:
This project will be discontinued after December 13, 2021. [more]
2018-07-06
An integer overflow in the uvesafb_setcmap function in drivers/video/fbdev/uvesafb.c in the Linux kernel before 4.17.4 could result in local attackers being able to crash the kernel or potentially elevate privileges because kmalloc_array is not used.
Products | Ubuntu_linux, Debian_linux, Linux_kernel |
Type | Integer Overflow or Wraparound (CWE-190) |
First patch |
https://github.com/torvalds/linux/commit/9f645bcc566a1e9f921bdae7528a01ced5bc3713 |
Patches | http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9f645bcc566a1e9f921bdae7528a01ced5bc3713 |
Relevant file/s | ./drivers/video/fbdev/uvesafb.c (modified, +2, -1) |
Links |
• https://usn.ubuntu.com/3752-3/
• https://usn.ubuntu.com/3753-2/ • https://usn.ubuntu.com/3753-1/ • https://usn.ubuntu.com/3752-2/ • http://www.securitytracker.com/id/1041355 |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: