CVE-2013-1872

Published: Aug 19, 2013Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds array access, related to the fs_visitor::remove_dead_constants function. NOTE: this issue might be related to CVE-2013-0796.

Affected (16)

Products: Mesa3d: Mesa · Canonical: Ubuntu Linux · Opensuse: Opensuse · +1 more

Show all products

Mesa3d: Mesa · Canonical: Ubuntu Linux · Opensuse: Opensuse · Redhat: Enterprise Linux

1 product

1 product

1 product

1 product

Enterprise Linux

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Mesa3d Mesa	Version 9.0.1
Mesa3d Mesa	Version 9.0.2
Mesa3d Mesa	Version 9.0.3
Mesa3d Mesa	Version 9.0

Configuration B

6 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 12.10
Canonical Ubuntu Linux	Version 13.04
Opensuse Opensuse	Version 12.2
Opensuse Opensuse	Version 12.3
Redhat Enterprise Linux	Version 6.0

Configuration C

6 vulnerable

Vulnerable Software	Affected Versions
Mesa3d Mesa	Version 8.0.1
Mesa3d Mesa	Version 8.0.2
Mesa3d Mesa	Version 8.0.3
Mesa3d Mesa	Version 8.0.4
Mesa3d Mesa	Version 8.0.5
Mesa3d Mesa	Version 8.0

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (18)

http://advisories.mageia.org/MGASA-2013-0190.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00014.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00019.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2013-0897.html

Source: secalert@redhat.com

http://www.debian.org/security/2013/dsa-2704

Source: secalert@redhat.com

http://www.securityfocus.com/bid/60285

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-1888-1

Source: secalert@redhat.com

https://bugs.freedesktop.org/show_bug.cgi?id=59429

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=923584

Source: secalert@redhat.com

http://advisories.mageia.org/MGASA-2013-0190.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00014.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00019.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2013-0897.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2013/dsa-2704

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/60285

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1888-1

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugs.freedesktop.org/show_bug.cgi?id=59429

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=923584

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.