CVE-2018-12154: Input Validation

Published Oct 15, 2018
·
Updated

Denial of Service in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 (aka 15.33.x.5056), 10.18.x.5057 (aka 15.36.x.5057) and 20.19.x.5058 (aka 15.40.x.5058) may allow an unprivileged user to potentially create an infinite loop and crash an application via local access.

Other sources

Graphics. Multiple memory corruption issues were addressed with improved input validation.

Credit

Piotr Bania(Cisco Talos)

Affected Software

14 affected componentsFixes available
Intel Graphics Drivers for Windows=15.33.43.4425
Intel Graphics Drivers for Windows=15.33.45.4653
Intel Graphics Drivers for Windows=15.33.46.4885
Intel Graphics Drivers for Windows=15.36.26.4294
Intel Graphics Drivers for Windows=15.36.28.4332
Intel Graphics Drivers for Windows=15.36.31.4414
Intel Graphics Drivers for Windows=15.36.33.4578
Intel Graphics Drivers for Windows=15.36.34.4889
Intel Graphics Drivers for Windows=15.40.34.4624
Intel Graphics Drivers for Windows=15.40.36.4703
Intel Graphics Drivers for Windows=15.40.37.4835
Intel Graphics Drivers for Windows=15.40.38.4963
macOS Catalina<10.15.1
10.15.1
macOS Catalina<10.15
10.15

Event History

Oct 15, 2018
CVE Published
via MITRE·06:00 PM
Data Sourced
via MITRE·06:00 PM
DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the vulnerability ID?

The vulnerability ID is CVE-2018-12154.

2

What is the severity of CVE-2018-12154?

The severity of CVE-2018-12154 is medium with a severity value of 5.5.

3

Which software versions are affected by CVE-2018-12154?

CVE-2018-12154 affects macOS Catalina versions up to 10.15.1 and Intel Graphics Driver versions 15.33.43.4425, 15.33.45.4653, 15.33.46.4885, 15.36.26.4294, 15.36.28.4332, 15.36.31.4414, 15.36.33.4578, 15.36.34.4889, 15.40.34.4624, 15.40.36.4703, 15.40.37.4835, and 15.40.38.4963.

4

What is the impact of CVE-2018-12154?

CVE-2018-12154 may allow an unprivileged user to potentially create an infinite loop and crash an application via local access, resulting in a denial of service.

5

How can I fix CVE-2018-12154?

To fix CVE-2018-12154, update your macOS Catalina to version 10.15.1 or newer, or update your Intel Graphics Driver to a version that is not affected.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203