CVE-2019-14615
CVE-2019-14615
In short
A flaw in Intel's graphics processor allows someone with access to a computer to read sensitive information that should be private. The problem is in how the processor controls which data different programs can access.
Technical detail
Insufficient control flow validation in Intel Processor Graphics data structures permits local privilege escalation to disclose kernel or other sensitive memory. The vulnerability requires local access and affects processors with integrated graphics; it allows bypass of memory access controls through graphics operations.
Summary generated and translated by AI from the official description.
Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.
Affected products
Intel · Intel(R) ProcessorsWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00021.htmlhttp://packetstormsecurity.com/files/156185/Kernel-Live-Patch-Security-Notice-LSN-0062-1.htmlhttp://packetstormsecurity.com/files/156455/Kernel-Live-Patch-Security-Notice-LSN-0063-1.htmlhttp://seclists.org/fulldisclosure/2020/Mar/31https://lists.debian.org/debian-lts-announce/2020/03/msg00001.htmlhttps://support.apple.com/kb/HT211100https://usn.ubuntu.com/4253-1/https://usn.ubuntu.com/4253-2/https://usn.ubuntu.com/4254-1/https://usn.ubuntu.com/4254-2/https://usn.ubuntu.com/4255-1/https://usn.ubuntu.com/4255-2/