Lucene search

PRIOn knowledge basePRION:CVE-2013-1993

HistoryJun 15, 2013 - 7:55 p.m.

Integer overflow

2013-06-1519:55:00

PRIOn knowledge base

www.prio-n.com

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.014 Low

EPSS

Percentile

85.9%

JSON

Multiple integer overflows in X.org libGLX in Mesa 9.1.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XF86DRIOpenConnection and (2) XF86DRIGetClientDriverName functions.

CPENameOperatorVersion
mesaeq9.0.1
mesaeq9.0.3
mesaeq9.0
mesaeq9.1
mesale9.1.1
mesaeq9.0.2

Name	Operator	Version
mesa	eq	9.0.1
mesa	eq	9.0.3
mesa	eq	9.0
mesa	eq	9.1
mesa	le	9.1.1
mesa	eq	9.0.2

References

advisories.mageia.org/MGASA-2013-0190.html

lists.freedesktop.org/archives/mesa-dev/2013-May/039720.html

lists.freedesktop.org/archives/mesa-dev/2013-May/039722.html

lists.opensuse.org/opensuse-updates/2013-06/msg00007.html

rhn.redhat.com/errata/RHSA-2013-0897.html

rhn.redhat.com/errata/RHSA-2013-0898.html

www.debian.org/security/2013/dsa-2678

www.mandriva.com/security/advisories?name=MDVSA-2013:181

www.openwall.com/lists/oss-security/2013/05/23/3

www.ubuntu.com/usn/USN-1888-1

www.x.org/wiki/Development/Security/Advisory-2013-05-23

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.014 Low

EPSS

Percentile

85.9%

JSON

Related for PRION:CVE-2013-1993