Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-7445

Опубликовано: 16 окт. 2015
Источник: nvd
CVSS2: 7.8
EPSS Низкий

Описание

The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия до 4.0.0 (включая)
cpe:2.3:o:linux:linux_kernel:4.0.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.0.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.0.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.0.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.0.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.0.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.0.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.0.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.0.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.1.10:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.2.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.2.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.2.3:*:*:*:*:*:*:*

EPSS

Процентиль: 69%
0.00608
Низкий

7.8 High

CVSS2

Дефекты

CWE-399

Связанные уязвимости

ubuntu логотип

CVE-2013-7445

ubuntu
больше 10 лет назад

The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.

redhat логотип

CVE-2013-7445

redhat
больше 10 лет назад

The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.

debian логотип

CVE-2013-7445

debian
больше 10 лет назад

The Direct Rendering Manager (DRM) subsystem in the Linux kernel throu ...

github логотип

GHSA-j587-gvrg-27rp

github
больше 3 лет назад

The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.

EPSS

Процентиль: 69%
0.00608
Низкий

7.8 High

CVSS2

Дефекты

CWE-399