CVE 2013-7445
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.
Related bugs and status
CVE-2013-7445 (Candidate) is related to these bugs:
Bug #1508323: CVE-2013-7445
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1508323 | CVE-2013-7445 | linux (Ubuntu) | High | New | ||
1508323 | CVE-2013-7445 | linux-fsl-imx51 (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-mvl-dove (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-backport-maverick (Ubuntu) | Undecided | New | ||
1508323 | CVE-2013-7445 | linux-lts-backport-natty (Ubuntu) | Undecided | New | ||
1508323 | CVE-2013-7445 | linux-ti-omap4 (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-ec2 (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux (Ubuntu Wily) | High | New | ||
1508323 | CVE-2013-7445 | linux-ec2 (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-fsl-imx51 (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-backport-maverick (Ubuntu Wily) | Undecided | New | ||
1508323 | CVE-2013-7445 | linux-lts-backport-natty (Ubuntu Wily) | Undecided | New | ||
1508323 | CVE-2013-7445 | linux-mvl-dove (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-ti-omap4 (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux (Ubuntu Vivid) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-ec2 (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-fsl-imx51 (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-backport-maverick (Ubuntu Vivid) | Undecided | New | ||
1508323 | CVE-2013-7445 | linux-lts-backport-natty (Ubuntu Vivid) | Undecided | New | ||
1508323 | CVE-2013-7445 | linux-mvl-dove (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-ti-omap4 (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux (Ubuntu Trusty) | High | New | ||
1508323 | CVE-2013-7445 | linux-ec2 (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-fsl-imx51 (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-backport-maverick (Ubuntu Trusty) | Undecided | New | ||
1508323 | CVE-2013-7445 | linux-lts-backport-natty (Ubuntu Trusty) | Undecided | New | ||
1508323 | CVE-2013-7445 | linux-mvl-dove (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-ti-omap4 (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux (Ubuntu Precise) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-ec2 (Ubuntu Precise) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-fsl-imx51 (Ubuntu Precise) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-backport-maverick (Ubuntu Precise) | Undecided | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-lts-backport-natty (Ubuntu Precise) | Undecided | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-mvl-dove (Ubuntu Precise) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-ti-omap4 (Ubuntu Precise) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-lts-trusty (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-trusty (Ubuntu Precise) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-lts-trusty (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-trusty (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-trusty (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-armadaxp (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-armadaxp (Ubuntu Precise) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-armadaxp (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-armadaxp (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-armadaxp (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-goldfish (Ubuntu) | High | New | ||
1508323 | CVE-2013-7445 | linux-goldfish (Ubuntu Precise) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-goldfish (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-goldfish (Ubuntu Vivid) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-goldfish (Ubuntu Wily) | High | New | ||
1508323 | CVE-2013-7445 | linux-lts-saucy (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-saucy (Ubuntu Precise) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-lts-saucy (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-saucy (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-saucy (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-quantal (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-quantal (Ubuntu Precise) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-lts-quantal (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-quantal (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-quantal (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-flo (Ubuntu) | High | New | ||
1508323 | CVE-2013-7445 | linux-flo (Ubuntu Precise) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-flo (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-flo (Ubuntu Vivid) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-flo (Ubuntu Wily) | High | New | ||
1508323 | CVE-2013-7445 | linux-lts-vivid (Ubuntu) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-vivid (Ubuntu Precise) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-vivid (Ubuntu Trusty) | High | New | ||
1508323 | CVE-2013-7445 | linux-lts-vivid (Ubuntu Vivid) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-lts-vivid (Ubuntu Wily) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-mako (Ubuntu) | High | New | ||
1508323 | CVE-2013-7445 | linux-mako (Ubuntu Precise) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-mako (Ubuntu Trusty) | High | Invalid | ||
1508323 | CVE-2013-7445 | linux-mako (Ubuntu Vivid) | High | Won't Fix | ||
1508323 | CVE-2013-7445 | linux-mako (Ubuntu Wily) | High | New |
See the
CVE page on Mitre.org
for more details.