CVE-2019-5068

An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.

Published: Nov 5, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-5068
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.4
AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

CVSS v2:

Severity: Low
Score: 3.6
AV:L/AC:L/Au:N/C:P/I:P/A:N

CWEs:

CWE-732

Affected Software
References

Software	From	Fixed in
mesa3d / mesa	19.1.2	19.1.2.x
opensuse / leap	15.1	15.1.x
debian / debian_linux	8.0	8.0.x
canonical / ubuntu_linux	18.04	18.04.x
canonical / ubuntu_linux	19.10	19.10.x

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00037.html
https://gitlab.freedesktop.org/mesa/mesa/-/commit/02c3dad0f3b4d26e0faa5cc51d06bc50d693dcdc
https://lists.debian.org/debian-lts-announce/2019/11/msg00013.html
https://lists.freedesktop.org/pipermail/mesa-dev/2019-October/223704.html
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0857
https://usn.ubuntu.com/4271-1/

Vulnerability Database

290,020

CVE-2019-5068