Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2021.0472.2 Intel Graphics Drivers Advisory 22 February 2021 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: Intel Graphics Drivers Publisher: Intel Operating System: Windows Linux variants Impact/Access: Increased Privileges -- Existing Account Denial of Service -- Existing Account Access Confidential Data -- Existing Account Resolution: Patch/Upgrade CVE Names: CVE-2020-24450 CVE-2020-24448 CVE-2020-12386 CVE-2020-12385 CVE-2020-12384 CVE-2020-12373 CVE-2020-12372 CVE-2020-12371 CVE-2020-12370 CVE-2020-12369 CVE-2020-12368 CVE-2020-12367 CVE-2020-12366 CVE-2020-12365 CVE-2020-12364 CVE-2020-12363 CVE-2020-12362 CVE-2020-12361 CVE-2020-8678 CVE-2020-0544 CVE-2020-0521 CVE-2020-0518 Original Bulletin: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html Revision History: February 22 2021: Updated CVE-2020-0518 February 10 2021: Initial Release - --------------------------BEGIN INCLUDED TEXT-------------------- Intel ID: INTEL-SA-00438 Advisory Category: Software Impact of Escalation of Privilege, Denial of Service, Information vulnerability : Disclosure Severity rating : HIGH Original release: 02/09/2021 Last revised: 02/19/2021 Summary: Potential security vulnerabilities in some Intel Graphics Drivers may allow escalation of privilege, denial of service and/or information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2020-0544 Description: Insufficient control flow management in the kernel mode driver for some Intel(R) Graphics Drivers before version 15.36.39.5145 may allow an authenticated user to potentially enable escalation of privilege via local access. CVSS Base Score: 8.8 High CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVEID: CVE-2020-0521 Description: Insufficient control flow management in some Intel(R) Graphics Drivers before version 15.45.32.5145 may allow an authenticated user to potentially enable escalation of privilege via local access. CVSS Base Score: 7.7 High CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L CVEID: CVE-2020-12362 Description: Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access. CVSS Base Score: 7.5 High CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H CVEID: CVE-2020-12361 Description: Use after free in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access. CVSS Base Score: 7.3 High CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H CVEID: CVE-2020-24450 Description: Improper conditions check in some Intel(R) Graphics Drivers before versions 26.20.100.8141, 15.45.32.5145 and 15.40.46.5144 may allow an authenticated user to potentially enable escalation of privilege via local access. CVSS Base Score: 7.3 High CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:L CVEID: CVE-2020-24462 Description: Out of bounds write in the Intel(R) Graphics Driver before version 15.33.53.5161, 15.36.40.5162, 15.40.47.5166, 15.45.33.5164 and 27.20.100.8336 may allow an authenticated user to potentially enable an escalation of privilege via local access. CVSS Base Score: 6.8 Medium CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L CVEID: CVE-2020-8678 Description: Improper access control for Intel(R) Graphics Drivers before version 15.45.33.5164 and 27.20.100.8280 may allow an authenticated user to potentially enable an escalation of privilege via local access. CVSS Base Score: 6.7 Medium CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H CVEID: CVE-2020-0518 Description: Improper access control in the Intel(R) HD Graphics Control Panel before version 15.40.46.5144 and 15.36.39.5143 may allow an authenticated user to potentially enable denial of service via local access. CVSS Base Score: 6.5 Medium CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVEID: CVE-2020-12367 Description: Integer overflow in some Intel(R) Graphics Drivers before version 26.20.100.8476 may allow a privileged user to potentially enable an escalation of privilege via local access. CVSS Base Score: 6.1 Medium CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:L CVEID: CVE-2020-12368 Description: Integer overflow in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable an escalation of privilege via local access. CVSS Base Score: 6.1 Medium CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:L CVEID: CVE-2020-12369 Description: Out of bound write in some Intel(R) Graphics Drivers before version 26.20.100.8336 may allow a privileged user to potentially enable escalation of privilege via local access. CVSS Base Score: 6.1 Medium CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:L CVEID: CVE-2020-12385 Description: Improper input validation in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable escalation of privilege via local access. CVSS Base Score: 6.1 Medium CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:L CVEID: CVE-2020-12365 Description: Untrusted pointer dereference in some Intel(R) Graphics Drivers before versions 15.33.51.5146, 15.45.32.5145, 15.36.39.5144 and 15.40.46.5143 may allow an authenticated user to potentially denial of service via local access. CVSS Base Score: 5.5 Medium CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVEID: CVE-2020-12366 Description: Insufficient input validation in some Intel(R) Graphics Drivers before version 27.20.100.8587 may allow a privileged user to potentially enable an escalation of privilege via local access. CVSS Base Score: 5.3 Medium CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N CVEID: CVE-2020-24448 Description: Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access. CVSS Base Score: 5.5 Medium CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVEID: CVE-2020-12386 Description: Out-of-bounds write in some Intel(R) Graphics Drivers before version 15.36.39.5143 may allow an authenticated user to potentially enable denial of service via local access. CVSS Base Score: 4.2 Medium CVSS Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:L CVEID: CVE-2020-12384 Description: Improper access control in some Intel(R) Graphics Drivers before version 26.20.100.8476 may allow an authenticated user to potentially enable an escalation of privilege via local access. CVSS Base Score: 3.3 Low CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVEID: CVE-2020-12363 Description: Improper input validation in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access. CVSS Base Score: 1.9 Low CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L CVEID: CVE-2020-12364 Description: Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access. CVSS Base Score: 1.9 Low CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L CVEID: CVE-2020-12370 Description: Untrusted pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access. CVSS Base Score: 1.9 Low CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L CVEID: CVE-2020-12371 Description: Divide by zero in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access. CVSS Base Score: 1.9 Low CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L CVEID: CVE-2020-12372 Description: Unchecked return value in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access. CVSS Base Score: 1.9 Low CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L CVEID: CVE-2020-12373 Description: Expired pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access. CVSS Base Score: 1.9 Low CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L Affected Products: Intel Graphics Drivers for 3 ^ rd , 4 ^ th , 5 ^ th , 6 ^ th , 7 ^ th , 8 ^ th , 9 ^ th and 10 ^ th Generation Intel Processors for Windows* 7, 8.1 and 10 before versions 15.33.51.5146, 15.36.39.5145, 15.40.46.5144, 15.45.32.5164, 26.20.100.8141, 27.20.100.8587 and Intel Graphics Drivers for Linux before Linux kernel version 5.5. Recommendation: Intel recommends updating the Intel Graphics Drivers to latest version. Updates are available for download at this location: For Windows*: https://downloadcenter.intel.com/search?keyword=intel+graphics For Linux: Contact your Linux distribution provider for updates. Acknowledgements: Intel would like to thank Ori Nimron (@orinimron123) (CVE-2020-12365 and CVE-2020-24448), j0bounties (CVE-2020-12361 ), Rancho Han of Singular Security Lab (CVE-2020-12386), Jamie Brown, Dean McKinnel, John Tear (CVE-2020-8678), Zhiniang Peng (@edwardzpeng) of Qihoo 360 Core security & Fangming Gu (CVE-2020-0518), Nassim Asrir (CVE-2020-12384) and Linshuang Li (CVE-2020-12366, CVE-2020-24450) and Nicola Stauffer (CVE-2020-24462) for reporting these issues. Intel would like to thank employees Sunny Rajasekaran and Steffen Schulz (CVE-2020-12367, CVE-2020-12368, CVE-2020-12369, CVE-2020-12370, CVE-2020-12371, CVE-2020-12372, CVE-2020-12373), Jared Candeleria (CVE-2020-12362, CVE-2020-12363, CVE-2020-12364), Will Burton (CVE-2020-0521, CVE-2020-12385). Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available. Revision History Revision Date Description 1.0 02/09/2021 Initial Release 1.1 02/18/2021 Updated CVSS score for CVE-2020-12386 1.2 02/19/2021 Updated CVE-2020-0518 - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: https://www.auscert.org.au/bulletins/ =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBYDNKTeNLKJtyKPYoAQjVbg//ex56kXlPgQq/5sSZF+iZFm67B8BBUCBe FnEaG2CPtNF7g9WHMw5fupM/qk5vmrYp8pbBQHX708/I7j2hfQRoXBZofF5Of9dv vmJWhNg9zUQnjceRBc4TgmiOjXVEQmG+NF2v9VjkECGplUFzZgFnrXSwoRrwog3F eXHTnSBLLJ6tDOsn7Z9x8Cds6CP0Sw+vss7lKcwS2kx8euasOrfsV7qVajBLR95D yRfWCZ1ohyFkFa3FicoPEnczCBFyIYqijrzXwMV8ZzifdzanMaGUes9N59faQtOB gd6wZ8UAUFYEMOrs+udTwMvQUV5ImSo2xghy4yyTJ+mXGSLQIhCysSBf1XFJVYet oSX7UXsNh8yhZoViGXXNrSbwmiG1i+2PsiTtU0OVf5jBeYAeSAy8JZFThiMDUO7w DOwr83GADZPomKPH0SGZaLuNIwANfJgW0e8TVlZUqy3St4JvadaAz6PaO0jomgAD 2lrgtQiSXH2T1ZjNx9xGzHx7Ecdno6sIdrjAv4WDP0Sq2Qm2lduC55sjsJ9IOGXK TDJQaezbu2QV0cfuskgr9Vd1OGVHCXq+sIs9dZZsRIxFl3DBA6+Th14lXriAADuh p6mugSk0Xw0fR65pSBhdIaZMCD1x3PwNW3ki7mgKWzSeHoC4C3v0JJQWzcKf33Ci F7fhhoy05RI= =p8L1 -----END PGP SIGNATURE-----