FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
ecb7fdec-0b82-11ea-874d-0c9d925bbbc0drm graphics drivers -- Local privilege escalation and denial of service

Intel reports:

As part of IPU 2019.2, INTEL-SA-00242 advises that insufficient access control may allow an authenticated user to potentially enable escalation of privilege via local access.

INTEL-SA-00260 advises that insufficient access control may allow an authenticated user to potentially enable denial of service via local access.


Discovery 2019-11-12
Entry 2019-11-20
Modified 2019-12-04
drm-current-kmod
< 4.16.g20191120

drm-devel-kmod
< 5.0.g20191120

drm-fbsd12.0-kmod
< 4.16.g20191120

drm-fbsd11.2-kmod
< 4.11.g20191204

https://blogs.intel.com/technology/2019/11/ipas-november-2019-intel-platform-update-ipu
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00242.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00260.html
CVE-2019-0154
CVE-2019-11112
d2c2c815-3793-11ea-8be3-54e1ad3d6335drm graphics drivers -- potential information disclusure via local access

Intel reports:

.A potential security vulnerability in Intel(R) Processor Graphics may allow information disclosure. Intel is releasing software updates to mitigate this potential vulnerability.

Description: Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.

This patch provides mitigation for Gen9 hardware only. Patches for Gen7 and Gen7.5 will be provided later. Note that Gen8 is not impacted due to a previously implemented workaround. The mitigation involves using an existing hardware feature to forcibly clear down all EU state at each context switch.


Discovery 2020-01-14
Entry 2020-01-15
drm-fbsd11.2-kmod
< 4.11.g20200115

drm-fbsd12.0-kmod
< 4.16.g20200115

drm-current-kmod
< 4.16.g20200115

drm-devel-kmod
< 5.0.g20200115

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00314.html
CVE-2019-14615