CVE-2018-8781

Summary

The udl_fb_mmap function in drivers/gpu/drm/udl/udl_fb.c at the Linux kernel version 3.4 and up to and including 4.15 has an integer-overflow vulnerability allowing local users with access to the udldrmfb driver to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space.

Affected Software

VendorProductVersion RangeStatus
Check Point Software Technologies Ltd.Linux Kernelkernel version 3.4 and up to and including 4.15affected

Weaknesses

  • Local Privilege Escalation

ADP Enrichment

CVE Program Container

Additional References

References