Home > Vulnerability Database > CVE-2019-5068

Mend.io Vulnerability Database

CVE-2019-5068

Good to know:

Date: November 5, 2019

An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.

Language: C

Severity Score

4.4

Related Resources (11)

Url: https://lists.freedesktop.org/pipermail/mesa-dev/2019-October/223704.html

Url: http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00037.html

Url: https://security-tracker.debian.org/tracker/CVE-2019-5068

Url: https://lists.debian.org/debian-lts-announce/2019/11/msg00013.html

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2019-5068

Url: https://nvd.nist.gov/vuln/detail/CVE-2019-5068

Url: https://access.redhat.com/security/cve/CVE-2019-5068

Url: https://talosintelligence.com/vulnerability_reports/TALOS-2019-0857

Url: https://gitlab.freedesktop.org/mesa/mesa/-/commit/02c3dad0f3b4d26e0faa5cc51d06bc50d693dcdc

Url: https://usn.ubuntu.com/4271-1/

Url: https://www.mend.io/vulnerability-database/CVE-2019-5068

Severity Score

4.4

Weakness Type (CWE)

Insecure Inherited Permissions

CWE-277

Incorrect Permission Assignment for Critical Resource

CWE-732

CVSS v3.1

Base Score:	4.4
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	NONE

CVSS v2

Base Score:	3.6
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2019-5068

Good to know:

Date: November 5, 2019

Language: C

Severity Score

Related Resources (11)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?