Intel's Linux Graphics Driver Gets Patched For A Gen9 Graphics Vulnerability

Written by Michael Larabel in Intel on 14 January 2020 at 01:29 PM EST. 20 Comments
INTEL
On top of the Intel graphics driver patches back from November for denial of service and privilege escalation bugs, the Linux kernel received a new patch today for "CVE-2019-14615" regarding a possible data disclosure with Gen9 graphics hardware.

CVE-2019-14615 hasn't been made public yet but the commit (63d264fe) merged to mainline today, this second Tuesday of the month, explains:
Insufficient control flow in certain data structures for some Intel Processors with Intel Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access

This provides mitigation for Gen9 hardware. Note that Gen8 is not impacted due to a previously implemented workaround.

The mitigation involves using an existing hardware feature to forcibly clear down all EU state at each context switch

It's important to note with this vulnerability leading to possible information disclosure, local access to the system is required.


Intel Gen9 graphics cover from Skylake through Coffee Lake (and basically everything on the market pre-Gen11 Icelake).


The workaround to force the clearing of all execution unit state on each context switch amounts to an eight line kernel patch. While currently in Linux 5.5 Git, the patch will presumably be found in stable kernel point releases in short order.

Update; Intel Gen7/Gen7.5 graphics hardware is also affected and requires a separate yet-to-be-mainlined mitigation.
20 Comments
Related News
Intel Talks Up Their Latest Compiler Toolchain Enhancements For AVX10.1, AMX & More
Rework For Intel CPU Model Handling To Land With Linux 6.10
Linux 6.10 Adding Intel Low-Latency Hint To Aggressively Boost GT Frequency For GPU Compute
Intel Releases OpenVINO 2024.1 With More Gen AI & LLM Features
Intel ANV Vulkan Driver Enables VK_KHR_shader_float_controls2
Intel Has Many Improvements For The Xe Graphics Driver In Linux 6.10
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
systemd Rolling Out "run0" As sudo Alternative
Linux Mint Looks To Fork More GNOME Software, Make XApp More Independent
Microsoft Updates Cascadia Code: Its Open-Source Font For Developers
Microsoft Open-Sources MS-DOS 4.0 Under MIT License
Systemd 256-rc1 Brings A Huge Number Of New Features
Rust-Based Coreutils 0.0.26 Increases Compatibility With GNU Coreutils
Rust-Written Redox OS Gets USB Keyboards & Mice Working
AMD Enabling "Fast CPPC" For Even Greater Linux Performance & Power Efficiency On Some CPUs