CVE-2019-9213
CVE-2019-9213
In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task.
Affected products
n/a · n/apublic PoCs found — 4
cve_referencepacketstormsecurity.com/files/156053/Reliable-Datagram-Sockets-RDS-rds_atomic_free_op-Privilege-Escalation.htmlunverifiedcve_referencewww.exploit-db.com/exploits/46502/unverifiedexploitdbwww.exploit-db.com/exploits/46502unverifiedexploitdbwww.exploit-db.com/exploits/47957unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0a1d52994d440e21def1c2174932410b4f2a98a1http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00045.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-04/msg00052.htmlhttp://packetstormsecurity.com/files/156053/Reliable-Datagram-Sockets-RDS-rds_atomic_free_op-Privilege-Escalation.htmlhttps://access.redhat.com/errata/RHSA-2019:0831https://access.redhat.com/errata/RHSA-2019:1479https://access.redhat.com/errata/RHSA-2019:1480https://bugs.chromium.org/p/project-zero/issues/detail?id=1792https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.105https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.27https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.20.14https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.162