[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247768

 
 

909

 
 

194555

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2013-1872Date: (C)2013-08-20   (M)2023-12-22


The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds array access, related to the fs_visitor::remove_dead_constants function. NOTE: this issue might be related to CVE-2013-0796.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.8
Exploit Score: 8.6
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
BID-60285
DSA-2704
RHSA-2013:0897
SUSE-SU-2013:1175
USN-1888-1
http://advisories.mageia.org/MGASA-2013-0190.html
https://bugs.freedesktop.org/show_bug.cgi?id=59429
https://bugzilla.redhat.com/show_bug.cgi?id=923584
openSUSE-SU-2013:1188

CPE    15
cpe:/a:mesa3d:mesa:9.0
cpe:/o:opensuse:opensuse:12.2
cpe:/o:canonical:ubuntu_linux:12.04:-:lts
cpe:/a:mesa3d:mesa:8.0
...
CWE    1
CWE-119
OVAL    6
oval:org.secpod.oval:def:601050
oval:org.secpod.oval:def:701342
oval:org.secpod.oval:def:1600207
oval:org.secpod.oval:def:501066
...

© SecPod Technologies