CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
5.1%
The print_binder_ref_olocked function in drivers/android/binder.c in the
Linux kernel 4.14.90 allows local users to obtain sensitive address
information by reading " ref *desc *node" lines in a debugfs file.
Author | Note |
---|---|
tyhicks | debugfs is only accessible by the root user in Ubuntu The patch that is listed as the fix for this issue quietly fixes the info leak while being focused on improving locking. Only the info leak is referenced by this CVE. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 16.04 | noarch | linux-azure | < 4.15.0-1013.13~16.04.2 | UNKNOWN |
ubuntu | 16.04 | noarch | linux-azure-edge | < 4.15.0-1013.13~16.04.2 | UNKNOWN |
ubuntu | 16.04 | noarch | linux-gcp | < 4.15.0-1014.14~16.04.1 | UNKNOWN |
ubuntu | 16.04 | noarch | linux-hwe | < 4.15.0-24.26~16.04.1 | UNKNOWN |
ubuntu | 16.04 | noarch | linux-hwe-edge | < 4.15.0-24.26~16.04.1 | UNKNOWN |
ubuntu | 18.04 | noarch | linux-snapdragon | < 4.15.0-1053.57 | UNKNOWN |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
5.1%