DisplayLink DRM Driver Had A Local Privilege Escalation Vulnerability
Written by Michael Larabel in Linux Kernel on 2 May 2018 at 07:45 AM EDT. 24 Comments
CVE-2018-8781 was made public today as a new local privilege escalation vulnerability in the mainline Linux kernel that has been present since the Linux 3.4 kernel release six years ago.

The DisplayLink DRM driver's udl_fb_mmap function is prone to an integer overflow vulnerability that could allow local users on systems using the udldrmfb driver to obtain full read/write permissions on kernel physical pages, thereby allowing code execution in kernel space.

The good news is that a patch has been out there since the end of March and sent back to the various stable series. So if you are on the latest stable kernel releases or Git you should be in good shape. The code was mainlined back at the end of March and is present since 4.16-rc7 and backported as far back as the Linux 3.18 LTS kernel.

CVE-2018-8781 is outlined at nist.gov.
Related News
About The Author
Author picture

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter or contacted via MichaelLarabel.com.

Popular News This Week