[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248268

 
 

909

 
 

195051

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2013-0913Date: (C)2013-03-18   (M)2024-04-19


Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel through 3.8.3, as used in Google Chrome OS before 25.0.1364.173 and other products, allows local users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted application that triggers many relocation copies, and potentially leads to a race condition.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.2
Exploit Score: 3.9
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
RHSA-2013:0744
USN-1809-1
USN-1811-1
USN-1812-1
USN-1813-1
USN-1814-1
https://lkml.org/lkml/2013/3/11/501
http://openwall.com/lists/oss-security/2013/03/11/6
http://openwall.com/lists/oss-security/2013/03/13/9
http://openwall.com/lists/oss-security/2013/03/14/22
http://git.chromium.org/gitweb/?p=chromiumos/third_party/kernel.git%3Ba=commit%3Bh=c79efdf2b7f68f985922a8272d64269ecd490477
http://googlechromereleases.blogspot.com/2013/03/stable-channel-update-for-chrome-os_15.html
https://bugzilla.redhat.com/show_bug.cgi?id=920471
https://code.google.com/p/chromium-os/issues/detail?id=39733
https://gerrit.chromium.org/gerrit/45118
openSUSE-SU-2013:0847
openSUSE-SU-2013:0925

CWE    1
CWE-189
OVAL    35
oval:org.secpod.oval:def:701272
oval:org.secpod.oval:def:701271
oval:org.secpod.oval:def:501046
oval:org.secpod.oval:def:104849
...

© SecPod Technologies