A vulnerability was found in Linux Kernel up to 4.20.13 (Operating System). It has been rated as problematic. This issue affects an unknown functionality of the file mm/mmap.c of the component Capability Check. The manipulation with an unknown input leads to a null pointer dereference vulnerability. Using CWE to declare the problem leads to CWE-476. A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. Impacted is confidentiality, integrity, and availability. The summary by CVE is:

In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task.

The bug was discovered 03/06/2019. The weakness was presented 03/05/2019 as openSUSE-SU-2019:1085-1 (Website). It is possible to read the advisory at securityfocus.com. The identification of this vulnerability is CVE-2019-9213 since 02/27/2019. The exploitation is known to be easy. Attacking locally is a requirement. No form of authentication is needed for a successful exploitation. Technical details of the vulnerability are known, but there is no available exploit.

The commercial vulnerability scanner Qualys is able to test this issue with plugin 277738 (Fedora Security Update for kernel kernel-headers (FEDORA-2019-196ab64d65)).

Upgrading to version 4.20.14 eliminates this vulnerability.

See 136769 for similar entry.

Productinfo

Type

• Operating System

Vendor

• Linux

Name

• Kernel

Version

• 4.20.0
• 4.20.1
• 4.20.2
• 4.20.3
• 4.20.4
• 4.20.5
• 4.20.6
• 4.20.7
• 4.20.8
• 4.20.9
• 4.20.10
• 4.20.11
• 4.20.12
• 4.20.13

License

• open-source

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion