CVE-2020-7053

HIGH

Linux Kernel 4.14-4.14.165 - Use-After-Free in i915 PPGTT Close

Title source: llm
STIX 2.1

Description

In the Linux kernel 4.14 longterm through 4.14.165 and 4.19 longterm through 4.19.96 (and 5.x before 5.2), there is a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka CID-7dc40713618c. This is related to i915_gem_context_destroy_ioctl in drivers/gpu/drm/i915/i915_gem_context.c.

References (12)

Core 12
Core References
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4287-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4287-2/
Third Party Advisory x_refsource_misc
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.2
Third Party Advisory x_refsource_confirm
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1859522
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4255-1/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4255-2/
Vendor Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20200204-0002/
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4285-1/

Scores

CVSS v3 7.8
EPSS 0.0062
EPSS Percentile 45.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-416
Status published
Products (1)
linux/linux_kernel 4.14 - 4.14.165
Published Jan 14, 2020
Tracked Since Feb 18, 2026