CVE-2019-5068

Priority
Description
An exploitable shared memory permissions vulnerability exists in the
functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can
access the shared memory without any specific permissions to trigger this
vulnerability.
Assigned-to
mdeslaur
Notes
sbeattiemesa and its build dependencies have been updated for the HWE
stack in bionic, so to fix this there will require no-change rebuilds
in the security pocket for libdrm, libclc, wayland, and
llvm-toolchain-9.
Package
Source: mesa (LP Ubuntu Debian)
Upstream:released (19.2.6-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (code not present)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (code not present)
Ubuntu 18.04 LTS (Bionic Beaver):released (19.2.8-0ubuntu0~18.04.2)
Ubuntu 19.10 (Eoan Ermine):released (19.2.8-0ubuntu0~19.10.2)
Ubuntu 20.04 (Focal Fossa):released (19.3.3-1ubuntu1)
Patches:
Upstream:https://cgit.freedesktop.org/mesa/mesa/commit/?id=02c3dad0f3b4d26e0faa5cc51d06bc50d693dcdc
More Information

Updated: 2020-02-06 16:15:45 UTC (commit 1c7e8723b79fd57b280f3a0eeda90c82f0a3889b)