1. Home
  2. Vulnerabilities
  3. CVE-2011-1013

CVE-2011-1013

CVSS v2.0 7.2 (High)
72% Progress
EPSS 0.04 % (5th)
0.04% Progress
Affected Products 2
Advisories 12
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Integer signedness error in the drm_modeset_ctl function in (1) drivers/gpu/drm/drm_irq.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.38 and (2) sys/dev/pci/drm/drm_irq.c in the kernel in OpenBSD before 4.9 allows local users to trigger out-of-bounds write operations, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via a crafted num_crtcs (aka vb_num) structure member in an ioctl argument.

Weaknesses
CWE-787
Out-of-bounds Write
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2011-05-09 19:55:02
(13 years ago)
Updated Date
2023-02-13 01:18:42
(19 months ago)

Affected Products

Linux

Openbsd

Configuration #1

    CPE23 From Up To
  Linux Kernel prior 2.6.38 version cpe:2.3:o:linux:linux_kernel < 2.6.38

Configuration #2

    CPE23 From Up To
  Openbsd 4.8 and prior versions cpe:2.3:o:openbsd:openbsd <= 4.8