Launchpad CVE tracker

CVE 2012-2864

Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute arbitrary code via unspecified vectors that trigger an "array overflow."

Related bugs and status

CVE-2012-2864 (Candidate) is related to these bugs:

Bug #1019444: Update Precise to mesa 8.0.4 (bugfix micro-release)

Summary				In	Importance	Status
	1019444	Update Precise to mesa 8.0.4 (bugfix micro-release)		mesa (Ubuntu)	Wishlist	Fix Released
	1019444	Update Precise to mesa 8.0.4 (bugfix micro-release)		mesa (Ubuntu Precise)	Wishlist	Fix Released

Bug #1046933: glsl/linker: array buffer overrun [CVE-2012-2864]

Summary				In	Importance	Status
	1046933	glsl/linker: array buffer overrun [CVE-2012-2864]		mesa (Ubuntu)	Undecided	Fix Released

Bug #1047306: [Mesa reverted, not impacting quantal right now] [Quantal] [Intel Atom] Mesa 2012/09/07 updates broke it all

		In	Importance	Status
1047306	[Mesa reverted, not impacting quantal right now] [Quantal] [Intel Atom] Mesa 2012/09/07 updates broke it all	mesa (Ubuntu)	Critical	Fix Released
1047306	[Mesa reverted, not impacting quantal right now] [Quantal] [Intel Atom] Mesa 2012/09/07 updates broke it all	mesa (Ubuntu Quantal)	Critical	Fix Released
1047306	[Mesa reverted, not impacting quantal right now] [Quantal] [Intel Atom] Mesa 2012/09/07 updates broke it all	Mesa	Medium	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2012-2864

References