CVE-2019-9112

Name of the Vulnerable Software and Affected Versions msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26

Description The issue is caused by an integer overflow due to missing checks of the count argument in the sde debugfs conn cmd tx write function in drivers/gpu/drm/msm/sde/sde connector.c. This can be exploited to cause a device crash via a syscall by a crafted application on a rooted device.

Recommendations For the msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26, consider disabling the sde debugfs conn cmd tx write function in drivers/gpu/drm/msm/sde/sde connector.c to prevent exploitation until a patch is available. Restrict access to the sde connector.c module to minimize the risk of exploitation. Avoid using the count argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.