CVE-2019-1010066
N/A
N/A
Summary
Lawrence Livermore National Laboratory msr-safe v1.1.0 is affected by: Incorrect Access Control. The impact is: An attacker could modify model specific registers. The component is: ioctl handling. The attack vector is: An attacker could exploit a bug in ioctl interface whitelist checking, in order to write to model specific registers, normally a function reserved for the root user. The fixed version is: v1.2.0.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Lawrence Livermore National Laboratory | msr-safe | v1.1.0 [fixed: v1.2.0] | affected |
Weaknesses
- Incorrect Access Control
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/LLNL/msr-safe/compare/v1.1.0…v1.2.0
- https://www.tldp.org/LDP/lkmpg/2.4/html/x856.html
References
- https://github.com/LLNL/msr-safe/compare/v1.1.0…v1.2.0
- https://www.tldp.org/LDP/lkmpg/2.4/html/x856.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.