Timothy Michaud

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 4.19.13 Description: A local attacker can exploit an issue in the i915 gem execbuffer2 ioctl function where a provided address with access ok() is not checked, allowing for a malicious IOCTL function call to overwrite arbitrary kernel memory. This can result in a Denial of Service or privilege escalation. The issue is due to a missing validation of a userspace pointer in i915 gem execbuffer2 ioctl of i915 gem execbuffer.c, which could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Recommendations: For Linux kernel versions through 4.19.13, consider upgrading to a version that includes the fix for this issue, as no specific workaround is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.