Bug 1770095 (CVE-2019-5068)

Summary: CVE-2019-5068 mesa: security bypass in 3D library graphics
Product: [Other] Security Response Reporter: Dhananjay Arunesh <darunesh>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: airlied, ajax, bskeggs, caillon+fedoraproject, igor.raits, john.j5live, lyude, rhughes, rstrode, tstellar
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: mesa 19.1.8 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-10-25 09:54:03 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1770096, 1779488, 1779489    
Bug Blocks: 1770097    

Description Dhananjay Arunesh 2019-11-08 06:21:09 UTC 
An exploitable shared memory permissions vulnerability exists in the
functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the
shared memory without any specific permissions to trigger this vulnerability.

Reference:
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0857
Comment 1 Dhananjay Arunesh 2019-11-08 06:21:33 UTC 
Created mesa tracking bugs for this issue:

Affects: fedora-all [bug 1770096]
Comment 2 Huzaifa S. Sidhpurwala 2019-12-04 04:29:02 UTC 
Upstream bug: https://gitlab.freedesktop.org/mesa/mesa/issues/121
Upstream patch: https://gitlab.freedesktop.org/mesa/mesa/commit/ddc7d7a33b36c2305955bbffb1f295196c1a9669
Comment 3 Huzaifa S. Sidhpurwala 2019-12-04 04:29:05 UTC 
External References:

https://www.mesa3d.org/relnotes/19.1.8.html
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0857