CVE-2013-1872

CVSS v2.0 6.8 (Medium)

EPSS 1.20 % (85^th)

Affected Products 4

Advisories 6

The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds array access, related to the fs_visitor::remove_dead_constants function. NOTE: this issue might be related to CVE-2013-0796.

Weaknesses

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

Related CVEs

CVE-2013-0796

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2013-08-19 23:55:08
(11 years ago)
Updated Date: 2023-11-07 02:14:51
(10 months ago)

Affected Products

Configuration #1

		CPE23	From	Up To
	Mesa3d Mesa 9.0	cpe:2.3:a:mesa3d:mesa:9.0
	Mesa3d Mesa 9.0.1	cpe:2.3:a:mesa3d:mesa:9.0.1
	Mesa3d Mesa 9.0.2	cpe:2.3:a:mesa3d:mesa:9.0.2
	Mesa3d Mesa 9.0.3	cpe:2.3:a:mesa3d:mesa:9.0.3

Configuration #2

		CPE23	From	Up To
	Canonical Ubuntu Linux 12.04 Lts Edition	cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts
	Canonical Ubuntu Linux 12.10	cpe:2.3:o:canonical:ubuntu_linux:12.10
	Canonical Ubuntu Linux 13.04	cpe:2.3:o:canonical:ubuntu_linux:13.04
	Opensuse 12.2	cpe:2.3:o:opensuse:opensuse:12.2
	Opensuse 12.3	cpe:2.3:o:opensuse:opensuse:12.3
	Redhat Enterprise Linux 6.0	cpe:2.3:o:redhat:enterprise_linux:6.0

Configuration #3

		CPE23	From	Up To
	Mesa3d Mesa 8.0	cpe:2.3:a:mesa3d:mesa:8.0
	Mesa3d Mesa 8.0.1	cpe:2.3:a:mesa3d:mesa:8.0.1
	Mesa3d Mesa 8.0.2	cpe:2.3:a:mesa3d:mesa:8.0.2
	Mesa3d Mesa 8.0.3	cpe:2.3:a:mesa3d:mesa:8.0.3
	Mesa3d Mesa 8.0.4	cpe:2.3:a:mesa3d:mesa:8.0.4
	Mesa3d Mesa 8.0.5	cpe:2.3:a:mesa3d:mesa:8.0.5

Weaknesses

Related CVEs

Affected Products

Canonical

Mesa3d

Opensuse

Redhat

Configuration #1

Configuration #2

Configuration #3