Home

CVE-2013-1872

Description

The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds array access, related to the fs_visitor::remove_dead_constants function. NOTE: this issue might be related to CVE-2013-0796.

Risk Information

Base Score
9.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.134

Associated Vulnerability

VulnerabilityOS Platform
free implementation of the EGL API (USN-1888-1) libgbm1-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libgbm1-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
free implementation of the EGL API (USN-1888-1) libegl1-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libegl1-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
free implementation of the EGL API (USN-1888-1) libglapi-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libglapi-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
free implementation of the EGL API (USN-1888-1) libgles1-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libgles1-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
free implementation of the EGL API (USN-1888-1) libgles2-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libgles2-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
free implementation of the EGL API (USN-1888-1) libxatracker1-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libxatracker1-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
free implementation of the EGL API (USN-1888-1) libgl1-mesa-dri-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libgl1-mesa-dri-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
free implementation of the EGL API (USN-1888-1) libgl1-mesa-glx-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libgl1-mesa-glx-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
free implementation of the EGL API (USN-1888-1) libopenvg1-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_i386.debLinux
free implementation of the EGL API (USN-1888-1) libopenvg1-mesa-lts-quantal_9.0.3-0ubuntu0.1~precise3_amd64.debLinux
(RHSA-2013:0897) Important: mesa security update glx-utils-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update glx-utils-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-demos-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-demos-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-dri-drivers-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-dri-drivers-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-dri-filesystem-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-dri-filesystem-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libGL-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libGL-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libGL-devel-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libGL-devel-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libGLU-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libGLU-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libGLU-devel-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libGLU-devel-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libOSMesa-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libOSMesa-9.0-0.8.el6_4.3.x86_64.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libOSMesa-devel-9.0-0.8.el6_4.3.i686.rpmLinux
(RHSA-2013:0897) Important: mesa security update mesa-libOSMesa-devel-9.0-0.8.el6_4.3.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234