- Vulnerability/
- USN-4271-1
USN-4271-1: Mesa vulnerability
First published: Thu Feb 06 2020(Updated: )
Tim Brown discovered that Mesa incorrectly handled shared memory permissions. A local attacker could use this issue to obtain and possibly alter sensitive information belonging to another user.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/libd3dadapter9-mesa | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libegl-mesa0 | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libegl1-mesa | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libgbm1 | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libgl1-mesa-dri | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libgl1-mesa-glx | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libglapi-mesa | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libgles2-mesa | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libglx-mesa0 | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libosmesa6 | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libwayland-egl1-mesa | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libxatracker2 | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/mesa-opencl-icd | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/mesa-va-drivers | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/mesa-vdpau-drivers | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/mesa-vulkan-drivers | <19.2.8-0ubuntu0~19.10.2 | 19.2.8-0ubuntu0~19.10.2 |
| Ubuntu | =19.10 | |
| All of | ||
| ubuntu/libd3dadapter9-mesa | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libegl-mesa0 | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libegl1-mesa | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libgbm1 | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libgl1-mesa-dri | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libgl1-mesa-glx | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libglapi-mesa | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libgles2-mesa | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libglx-mesa0 | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libosmesa6 | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libwayland-egl1-mesa | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/libxatracker2 | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/mesa-opencl-icd | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/mesa-va-drivers | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/mesa-vdpau-drivers | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 | |
| All of | ||
| ubuntu/mesa-vulkan-drivers | <19.2.8-0ubuntu0~18.04.2 | 19.2.8-0ubuntu0~18.04.2 |
| Ubuntu | =18.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of USN-4271-1?
The vulnerability classified under USN-4271-1 has a medium severity due to improper handling of shared memory permissions.
How do I fix USN-4271-1?
To fix the issue identified in USN-4271-1, update the affected packages to version 19.2.8-0ubuntu0~19.10.2 or later.
What packages are affected by USN-4271-1?
The affected packages include libd3dadapter9-mesa, libegl-mesa0, libegl1-mesa, libgbm1, libgl1-mesa-dri, libgl1-mesa-glx, libglapi-mesa, libgles2-mesa, libglx-mesa0, libosmesa6, libwayland-egl1-mesa, libxatracker2, mesa-opencl-icd, mesa-va-drivers, mesa-vdpau-drivers, and mesa-vulkan-drivers.
Who discovered the vulnerability USN-4271-1?
The vulnerability USN-4271-1 was discovered by Tim Brown.
- agent/severity
- agent/references
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/title
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu
- version/ubuntu/19.10
- version/ubuntu/18.04