CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS
Percentile
41.5%
Intel reports:
.A potential security vulnerability in Intelยฎ Processor Graphics
may allow information disclosure. Intel is releasing software
updates to mitigate this potential vulnerability.
Description: Insufficient control flow in certain data
structures for some Intelยฎ Processors with Intelยฎ Processor
Graphics may allow an unauthenticated user to potentially enable
information disclosure via local access.
This patch provides mitigation for Gen9 hardware only. Patches
for Gen7 and Gen7.5 will be provided later. Note that Gen8 is not
impacted due to a previously implemented workaround. The mitigation
involves using an existing hardware feature to forcibly clear down
all EU state at each context switch.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | drm-fbsd11.2-kmod | <ย 4.11.g20200115 | UNKNOWN |
FreeBSD | any | noarch | drm-fbsd12.0-kmod | <ย 4.16.g20200115 | UNKNOWN |
FreeBSD | any | noarch | drm-current-kmod | <ย 4.16.g20200115 | UNKNOWN |
FreeBSD | any | noarch | drm-devel-kmod | <ย 5.0.g20200115 | UNKNOWN |
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS
Percentile
41.5%