{"containers": {"cna": {"affected": [{"product": "Intel(R) i915 Graphics for Linux", "vendor": "n/a", "versions": [{"status": "affected", "version": "Versions before 5.0."}]}], "descriptions": [{"lang": "en", "value": "Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux before version 5.0 may allow an authenticated user to potentially enable escalation of privilege via local access."}], "problemTypes": [{"descriptions": [{"description": "Escalation of Privilege", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-02-26T12:06:03", "orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce", "shortName": "intel"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00249.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.f5.com/csp/article/K09376613"}, {"name": "108488", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/108488"}, {"name": "openSUSE-SU-2019:1479", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html"}, {"name": "openSUSE-SU-2019:1579", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00048.html"}, {"name": "USN-4068-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/4068-1/"}, {"name": "USN-4068-2", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/4068-2/"}, {"name": "RHSA-2019:1873", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2019:1873"}, {"name": "RHSA-2019:1891", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2019:1891"}, {"name": "RHSA-2019:1959", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2019:1959"}, {"name": "RHSA-2019:1971", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2019:1971"}, {"name": "USN-4118-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/4118-1/"}, {"name": "RHSA-2020:0543", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2020:0543"}, {"name": "RHSA-2020:0592", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2020:0592"}, {"name": "RHSA-2020:0609", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2020:0609"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secure@intel.com", "ID": "CVE-2019-11085", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Intel(R) i915 Graphics for Linux", "version": {"version_data": [{"version_value": "Versions before 5.0."}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux before version 5.0 may allow an authenticated user to potentially enable escalation of privilege via local access."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Escalation of Privilege"}]}]}, "references": {"reference_data": [{"name": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00249.html", "refsource": "MISC", "url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00249.html"}, {"name": "https://support.f5.com/csp/article/K09376613", "refsource": "CONFIRM", "url": "https://support.f5.com/csp/article/K09376613"}, {"name": "108488", "refsource": "BID", "url": "http://www.securityfocus.com/bid/108488"}, {"name": "openSUSE-SU-2019:1479", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html"}, {"name": "openSUSE-SU-2019:1579", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00048.html"}, {"name": "USN-4068-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4068-1/"}, {"name": "USN-4068-2", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4068-2/"}, {"name": "RHSA-2019:1873", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:1873"}, {"name": "RHSA-2019:1891", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:1891"}, {"name": "RHSA-2019:1959", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:1959"}, {"name": "RHSA-2019:1971", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:1971"}, {"name": "USN-4118-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4118-1/"}, {"name": "RHSA-2020:0543", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2020:0543"}, {"name": "RHSA-2020:0592", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2020:0592"}, {"name": "RHSA-2020:0609", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2020:0609"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T22:40:16.359Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00249.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.f5.com/csp/article/K09376613"}, {"name": "108488", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/108488"}, {"name": "openSUSE-SU-2019:1479", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html"}, {"name": "openSUSE-SU-2019:1579", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00048.html"}, {"name": "USN-4068-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "https://usn.ubuntu.com/4068-1/"}, {"name": "USN-4068-2", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "https://usn.ubuntu.com/4068-2/"}, {"name": "RHSA-2019:1873", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:1873"}, {"name": "RHSA-2019:1891", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:1891"}, {"name": "RHSA-2019:1959", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:1959"}, {"name": "RHSA-2019:1971", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:1971"}, {"name": "USN-4118-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "https://usn.ubuntu.com/4118-1/"}, {"name": "RHSA-2020:0543", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2020:0543"}, {"name": "RHSA-2020:0592", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2020:0592"}, {"name": "RHSA-2020:0609", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2020:0609"}]}]}, "cveMetadata": {"assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce", "assignerShortName": "intel", "cveId": "CVE-2019-11085", "datePublished": "2019-05-17T15:41:37", "dateReserved": "2019-04-11T00:00:00", "dateUpdated": "2024-08-04T22:40:16.359Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:intel:i915_firmware:*:*:*:*:*:linux:*:*", "matchCriteriaId": "BFD3F7D4-C67B-4D95-AD94-9111D02720A9", "versionEndExcluding": "5.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:intel:i915:-:*:*:*:*:linux:*:*", "matchCriteriaId": "DC0D3093-7D64-4ADA-A117-987AE9074F3F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux before version 5.0 may allow an authenticated user to potentially enable escalation of privilege via local access."}, {"lang": "es", "value": "La validaci\u00f3n de entrada insuficiente en Kernel Mode Driver en Intel (R) i915 Graphics para Linux antes de la versi\u00f3n 5.0 puede permitir que un usuario autentificado habilite potencialmente la escalada de privilegios a trav\u00e9s del acceso local."}], "id": "CVE-2019-11085", "lastModified": "2019-05-31T12:29:01.547", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-05-17T16:29:03.063", "references": [{"source": "secure@intel.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html"}, {"source": "secure@intel.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00048.html"}, {"source": "secure@intel.com", "url": "http://www.securityfocus.com/bid/108488"}, {"source": "secure@intel.com", "url": "https://access.redhat.com/errata/RHSA-2019:1873"}, {"source": "secure@intel.com", "url": "https://access.redhat.com/errata/RHSA-2019:1891"}, {"source": "secure@intel.com", "url": "https://access.redhat.com/errata/RHSA-2019:1959"}, {"source": "secure@intel.com", "url": "https://access.redhat.com/errata/RHSA-2019:1971"}, {"source": "secure@intel.com", "url": "https://access.redhat.com/errata/RHSA-2020:0543"}, {"source": "secure@intel.com", "url": "https://access.redhat.com/errata/RHSA-2020:0592"}, {"source": "secure@intel.com", "url": "https://access.redhat.com/errata/RHSA-2020:0609"}, {"source": "secure@intel.com", "tags": ["Third Party Advisory"], "url": "https://support.f5.com/csp/article/K09376613"}, {"source": "secure@intel.com", "url": "https://usn.ubuntu.com/4068-1/"}, {"source": "secure@intel.com", "url": "https://usn.ubuntu.com/4068-2/"}, {"source": "secure@intel.com", "url": "https://usn.ubuntu.com/4118-1/"}, {"source": "secure@intel.com", "tags": ["Vendor Advisory", "Patch"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00249.html"}], "sourceIdentifier": "secure@intel.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2019:1891", "cpe": "cpe:/a:redhat:rhel_extras_rt:7", "package": "kernel-rt-0:3.10.0-957.27.2.rt56.940.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2019-07-29T00:00:00Z"}, {"advisory": "RHSA-2019:1873", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "kernel-0:3.10.0-957.27.2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2019-07-29T00:00:00Z"}, {"advisory": "RHSA-2020:0592", "cpe": "cpe:/o:redhat:rhel_aus:7.4", "package": "kernel-0:3.10.0-693.64.1.el7", "product_name": "Red Hat Enterprise Linux 7.4 Advanced Update Support", "release_date": "2020-02-25T00:00:00Z"}, {"advisory": "RHSA-2020:0592", "cpe": "cpe:/o:redhat:rhel_tus:7.4", "package": "kernel-0:3.10.0-693.64.1.el7", "product_name": "Red Hat Enterprise Linux 7.4 Telco Extended Update Support", "release_date": "2020-02-25T00:00:00Z"}, {"advisory": "RHSA-2020:0592", "cpe": "cpe:/o:redhat:rhel_e4s:7.4", "package": "kernel-0:3.10.0-693.64.1.el7", "product_name": "Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions", "release_date": "2020-02-25T00:00:00Z"}, {"advisory": "RHSA-2020:0543", "cpe": "cpe:/o:redhat:rhel_eus:7.5", "package": "kernel-0:3.10.0-862.48.1.el7", "product_name": "Red Hat Enterprise Linux 7.5 Extended Update Support", "release_date": "2020-02-19T00:00:00Z"}, {"advisory": "RHSA-2019:1971", "cpe": "cpe:/a:redhat:enterprise_linux:8::nfv", "package": "kernel-rt-0:4.18.0-80.7.1.rt9.153.el8_0", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2019-07-30T00:00:00Z"}, {"advisory": "RHSA-2019:1959", "cpe": "cpe:/o:redhat:enterprise_linux:8", "package": "kernel-0:4.18.0-80.7.1.el8_0", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2019-07-30T00:00:00Z"}, {"advisory": "RHSA-2020:0609", "cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6", "package": "kernel-rt-1:3.10.0-693.64.1.rt56.662.el6rt", "product_name": "Red Hat Enterprise MRG 2", "release_date": "2020-02-26T00:00:00Z"}], "bugzilla": {"description": "kernel: insufficient input validation in kernel mode driver in Intel i915 graphics leads to privilege escalation", "id": "1710405", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1710405"}, "csaw": false, "cvss3": {"cvss3_base_score": "8.8", "cvss3_scoring_vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-20->CWE-250", "details": ["Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux before version 5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.", "A flaw was found in the Linux kernel's implementation of GVT-g which allowed an attacker with access to a 'passed through' Intel i915 graphics card to possibly access resources allocated to other virtual machines, crash the host, or possibly corrupt memory leading to privilege escalation."], "name": "CVE-2019-11085", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "kernel-alt", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2019-05-14T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2019-11085\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-11085\nhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00249.html"], "threat_severity": "Important", "upstream_fix": "kernel 5.0"}