CVE-2019-12382: Null Pointer Dereference
DISPUTED An issue was discovered in drmloadedidfirmware in drivers/gpu/drm/drmedidload.c in the Linux kernel through 5.1.5. There is an unchecked kstrdup of fwstr, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash). NOTE: The vendor disputes this issues as not being a vulnerability because kstrdup() returning NULL is handled sufficiently and there is no chance for a NULL pointer dereference.
Other sources
A flaw was found in the Linux kernel’s implementation of Extended Display Identification Data (EDID) technology. A firmware identifier string is duplicated with the kstrdup function, and the allocation may fail under very low memory conditions. An attacker could abuse this flaw by causing a Denial of Service and crashing the system.
An issue was discovered in the Linux kernels implementation of Extended Display Identification Data (EDID) technology. An attacker with local access could cause a system under severe memory pressure to create a null pointer dereference when plugging in a monitor.
An firmware identifier string is duplicated with the kstrdup function, and the allocation may fail under very low memory conditions. This may allow an attacker to crash the system causing a denial of service (NULL pointer dereference)
The conditions under which this flaw would take place are unlikely and it likely that the system OOMkiller would free available memory before the low memory condition to exploit this flaw is met.
Upstream patch:
https://cgit.freedesktop.org/drm/drm-misc/commit/?id=9f1f1a2dab38d4ce87a13565cf4dc1b73bef3a5f
References:
https://lkml.org/lkml/2019/5/24/843
— Red Hat
Linux Kernel is vulnerable to a denial of service, caused by a NULL pointer dereference in the drmloadedidfirmware function in drivers/gpu/drm/drmedidload.c. By sending a specially-crafted request, a local attacker could exploit this vulnerability to cause the system to crash.
— IBM
Affected Software
Remediation
Patch Available
Event History
Parent advisories
This vulnerability appears in the following advisories.
Frequently Asked Questions
What is the severity of CVE-2019-12382?
CVE-2019-12382 is considered a medium severity vulnerability that can lead to a null pointer dereference and system crash.
How do I fix CVE-2019-12382?
To fix CVE-2019-12382, you should update the Linux kernel to the patched versions provided by your Linux distribution.
Which Linux kernel versions are affected by CVE-2019-12382?
CVE-2019-12382 affects Linux kernel versions up to and including 5.1.5.
Is there a known exploit for CVE-2019-12382?
As of now, there is no public exploit reported for CVE-2019-12382.
Which products are impacted by CVE-2019-12382?
Products impacted by CVE-2019-12382 include the Red Hat kernel-rt and kernel packages, as well as IBM Data Risk Manager up to version 2.0.6.