The Linux kernel from version 3.4 through 4.15 has an integer overflow vulnerability in the drivers/gpu/drm/udl/udl_fb.c:udl_fb_mmap() function. An attacker with access to the udldrmfb driver could exploit this to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space. Upstream Patch: https://patchwork.freedesktop.org/patch/211845/ Mitre annoucement: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-8781
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1571063]
This was fixed for Fedora with the 4.15.14 stable kernel updates.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:3083 https://access.redhat.com/errata/RHSA-2018:3083
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:3096 https://access.redhat.com/errata/RHSA-2018:3096
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:2948 https://access.redhat.com/errata/RHSA-2018:2948