Christian König - Security Researcher - Exploit Intelligence Platform

CVE-2019-19927 WRITEUP MEDIUM WRITEUP

Linux Kernel 5.0.0-rc7 - Out-of-bounds Read in ttm_put_pages

In the Linux kernel 5.0.0-rc7 (as distributed in ubuntu/linux.git on kernel.ubuntu.com), mounting a crafted f2fs filesystem image and performing some operations can lead to slab-out-of-bounds read access in ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c. This is related to the vmwgfx or ttm module.

CVSS 6.0

View Code

CVE-2019-19927 WRITEUP MEDIUM WRITEUP

Linux Kernel 5.0.0-rc7 - Out-of-bounds Read in ttm_put_pages

In the Linux kernel 5.0.0-rc7 (as distributed in ubuntu/linux.git on kernel.ubuntu.com), mounting a crafted f2fs filesystem image and performing some operations can lead to slab-out-of-bounds read access in ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c. This is related to the vmwgfx or ttm module.

CVSS 6.0

View Code

CVE-2019-19927 WRITEUP MEDIUM WRITEUP

Linux Kernel 5.0.0-rc7 - Out-of-bounds Read in ttm_put_pages

In the Linux kernel 5.0.0-rc7 (as distributed in ubuntu/linux.git on kernel.ubuntu.com), mounting a crafted f2fs filesystem image and performing some operations can lead to slab-out-of-bounds read access in ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c. This is related to the vmwgfx or ttm module.

CVSS 6.0

View Code

CVE-2023-51042 WRITEUP HIGH WRITEUP

Linux kernel <6.4.12 - Use After Free

In the Linux kernel before 6.4.12, amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c has a fence use-after-free.

CVSS 7.8

View Code