7.8

CVE-2013-2596

Warnung
Exploit
Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other products, allows local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted /dev/graphics/fb0 mmap2 system calls, as demonstrated by the Motochopper pwn program.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 2.6.12 < 3.0.75
   MotorolaAtrix Hd Version-
   MotorolaRazr Hd Version-
   MotorolaRazr M Version-
   QualcommMsm8960 Version-
LinuxLinux Kernel Version >= 3.1 < 3.2.45
   MotorolaAtrix Hd Version-
   MotorolaRazr Hd Version-
   MotorolaRazr M Version-
   QualcommMsm8960 Version-
LinuxLinux Kernel Version >= 3.3 < 3.4.42
   MotorolaAtrix Hd Version-
   MotorolaRazr Hd Version-
   MotorolaRazr M Version-
   QualcommMsm8960 Version-
LinuxLinux Kernel Version >= 3.5 < 3.8.9
   MotorolaAtrix Hd Version-
   MotorolaRazr Hd Version-
   MotorolaRazr M Version-
   QualcommMsm8960 Version-
MotorolaAndroid Version4.1.2
   MotorolaAtrix Hd Version-
   MotorolaRazr Hd Version-
   MotorolaRazr M Version-
   QualcommMsm8960 Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login

15.09.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Linux Kernel Integer Overflow Vulnerability

Schwachstelle

Linux kernel fb_mmap function in drivers/video/fbmem.c contains an integer overflow vulnerability that allows for privilege escalation.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.37% 0.872
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.9 3.4 10
AV:L/AC:M/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761
Third Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
Patch
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2013:176
Broken Link
http://forum.xda-developers.com/showthread.php?t=2255491
Exploit
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b4cbb197c7e7a68dbad0d491242e3ca67420c13e
Broken Link
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fc9bbca8f650e5f738af8806317c0a041a48ae4a
Broken Link
http://marc.info/?l=linux-kernel&m=136616837923938&w=2
Patch
Third Party Advisory
Mailing List
http://rhn.redhat.com/errata/RHSA-2015-0695.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0782.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0803.html
Third Party Advisory
http://www.droid-life.com/2013/04/09/root-method-released-for-droid-razr-hd-running-android-4-1-2-other-devices-too/
Third Party Advisory
Exploit
Issue Tracking
http://www.droidrzr.com/index.php/topic/15208-root-motochopper-yet-another-android-root-exploit/
Exploit
Issue Tracking
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9
Mailing List
Release Notes
http://www.securityfocus.com/bid/59264
Third Party Advisory
Broken Link
VDB Entry
https://github.com/torvalds/linux/commit/b4cbb197c7e7a68dbad0d491242e3ca67420c13e
Patch
https://github.com/torvalds/linux/commit/fc9bbca8f650e5f738af8806317c0a041a48ae4a
Patch
Exploit
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-2596
US Government Resource