These issues have been fixed in these releases.
CVE-2018-10853 ARM’s Mali GPU driver, formerly known as Exynos, contains a vulnerability that allows a user to cause a Denial of Service (DoS) by performing certain operations on a device. This affects Mali-400, Mali-450, Mali-T604, Mali-T720. These issues have been fixed in these releases.
CVE-2018-12896 ARM’s Mali GPU driver, formerly known as Exynos, contains a vulnerability that allows a user to cause a Denial of Service (DoS) and read/write access outside of the intended memory region. This affects Mali-400, Mali-450, Mali-T604. These issues have been fixed in these releases.
CVE-2018-14904 In the Linux kernel before version 4.19, a race condition exists in the __user_exitt() operation of certain ioctl calls. An unprivileged user could exploit this flaw to cause a denial of service (BUG).
CVE-2018-14902 In the Linux kernel before version 4.18, a race condition exists in the ptrace implementation between ptrace_get_opreturn() and ptrace_get_opcode(). An unprivileged user could exploit this flaw to gain access to privileged instructions.
CVE-2018-13405 In the Linux kernel before version 4.16, a race condition exists
^*^
*^*^*^*^*^* ^*^* ^
"CVE-2018-13405 In the Linux kernel before version 4.16, a race condition exists," ^
This means that there is a vulnerability in the software which is not fixed in these releases.
^ ^
The Linux kernel before version 4.16 contains a race condition in the ALSA PCM subsystem that allows a local, unprivileged user to cause a denial of service (BUG).
These issues have been fixed in these releases.
^^ this is the description
The following vulnerabilities have been fixed in these releases.
Timeline
Published on: 09/01/2022 03:15:00 UTC
Last modified on: 09/29/2022 15:55:00 UTC
References
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
- http://packetstormsecurity.com/files/168431/Arm-Mali-Released-Buffer-Use-After-Free.html
- http://packetstormsecurity.com/files/168434/Arm-Mali-CSF-Missing-Buffer-Size-Check.html
- http://packetstormsecurity.com/files/168432/Arm-Mali-Physical-Address-Exposure.html
- http://packetstormsecurity.com/files/168433/Arm-Mali-Race-Condition.html
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-36449