CVE-2013-0913
Severity CVSS v4.0:
Pending analysis
Type:
CWE-189
Numeric Errors
Publication date:
18/03/2013
Last modified:
11/04/2025
Description
Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel through 3.8.3, as used in Google Chrome OS before 25.0.1364.173 and other products, allows local users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted application that triggers many relocation copies, and potentially leads to a race condition.
Impact
Base Score 2.0
7.20
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 2.6.37 (including) | 3.0.71 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 3.1 (including) | 3.2.42 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 3.3 (including) | 3.4.38 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 3.5 (including) | 3.8.5 (excluding) |
| cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:* | ||
| cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://git.chromium.org/gitweb/?p=chromiumos/third_party/kernel.git%3Ba%3Dcommit%3Bh%3Dc79efdf2b7f68f985922a8272d64269ecd490477
- http://googlechromereleases.blogspot.com/2013/03/stable-channel-update-for-chrome-os_15.html
- http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.html
- http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html
- http://openwall.com/lists/oss-security/2013/03/11/6
- http://openwall.com/lists/oss-security/2013/03/13/9
- http://openwall.com/lists/oss-security/2013/03/14/22
- http://rhn.redhat.com/errata/RHSA-2013-0744.html
- http://www.ubuntu.com/usn/USN-1809-1
- http://www.ubuntu.com/usn/USN-1811-1
- http://www.ubuntu.com/usn/USN-1812-1
- http://www.ubuntu.com/usn/USN-1813-1
- http://www.ubuntu.com/usn/USN-1814-1
- https://bugzilla.redhat.com/show_bug.cgi?id=920471
- https://code.google.com/p/chromium-os/issues/detail?id=39733
- https://gerrit.chromium.org/gerrit/45118
- https://lkml.org/lkml/2013/3/11/501
- http://git.chromium.org/gitweb/?p=chromiumos/third_party/kernel.git%3Ba%3Dcommit%3Bh%3Dc79efdf2b7f68f985922a8272d64269ecd490477
- http://googlechromereleases.blogspot.com/2013/03/stable-channel-update-for-chrome-os_15.html
- http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.html
- http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html
- http://openwall.com/lists/oss-security/2013/03/11/6
- http://openwall.com/lists/oss-security/2013/03/13/9
- http://openwall.com/lists/oss-security/2013/03/14/22
- http://rhn.redhat.com/errata/RHSA-2013-0744.html
- http://www.ubuntu.com/usn/USN-1809-1
- http://www.ubuntu.com/usn/USN-1811-1
- http://www.ubuntu.com/usn/USN-1812-1
- http://www.ubuntu.com/usn/USN-1813-1
- http://www.ubuntu.com/usn/USN-1814-1
- https://bugzilla.redhat.com/show_bug.cgi?id=920471
- https://code.google.com/p/chromium-os/issues/detail?id=39733
- https://gerrit.chromium.org/gerrit/45118
- https://lkml.org/lkml/2013/3/11/501