Wind River Support Network

HomeDefectsLIN1018-4389
Fixed

LIN1018-4389 : Security Advisory - linux - CVE-2019-13233

Created: Jul 4, 2019    Updated: Aug 21, 2019
Resolved Date: Aug 11, 2019
Found In Version: 10.18.44.1
Fix Version: 10.18.44.10
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

In arch/x86/lib/insn-eval.c in the Linux kernel before 5.1.9, there is a use-after-free for access to an LDT entry because of a race condition between modify_ldt() and a #BR exception for an MPX bounds violation.

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-13233 User=admin}

CVEs


Live chat
Online