The udl_fb_mmap function in drivers/gpu/drm/udl/udl_fb.c at the Linux kernel version 3.4 and up to and including 4.15 has an integer-overflow vulnerability allowing local users with access to the udldrmfb driver to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space.
3.13.0-151.2014.4.0-1022.224.4.0-127.153~14.04.14.4.0-127.1534.4.0-1060.694.15.0-1013.13~16.04.24.13.0-1019.234.15.0-24.26~16.04.14.4.0-1026.314.13.0-1030.33Exploitability
AV:LAC:LPR:LUI:NScope
S:UImpact
C:HI:HA:HCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H