user/mesa: CVE-2019-5068: mode 777 shared memory segments
Bugzilla ID | 328 |
Alias(es) | CVE-2019-5068 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2020-07-08 13:19:50 -0500 |
Modified | 2020-07-09 03:35:13 -0500 |
Status | RESOLVED INVALID |
Version | 1.0-RC1 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
Package(s) | user/mesa |
URL | https://talosintelligence.com/vulnerability_reports/TALOS-2019-0857 |
Description
An exploitable shared memory permissions vulnerability exists in the
functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can
access the shared memory without any specific permissions to trigger
this vulnerability.
Not backported to 19.x (EOL) https://gitlab.freedesktop.org/mesa/mesa/commit/02c3dad0f3b4d26e0faa5cc51d06bc50d693dcdc