Wind River Support Network

HomeDefectsSCP7-971
Fixed

SCP7-971 : Security Advisory - linux - CVE-2019-9213

Created: Mar 27, 2019    Updated: Jul 26, 2019
Resolved Date: Jul 26, 2019
Found In Version: unknown
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel

Description

In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task.

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-9213 User=admin}
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube