CVE-2013-0913

Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel through 3.8.3, as used in Google Chrome OS before 25.0.1364.173 and other products, allows local users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted application that triggers many relocation copies, and potentially leads to a race condition.

Affected Software

Name	Vendor	Start Version	End Version
Linux_kernel	Linux	2.6.37 (including)	3.0.71 (excluding)
Linux_kernel	Linux	3.1 (including)	3.2.42 (excluding)
Linux_kernel	Linux	3.3 (including)	3.4.38 (excluding)
Linux_kernel	Linux	3.5 (including)	3.8.5 (excluding)
Red Hat Enterprise Linux 6	RedHat	kernel-0:2.6.32-358.6.1.el6	*
Red Hat Enterprise MRG 2	RedHat	kernel-rt-0:3.6.11.2-rt33.39.el6rt	*
Linux	Ubuntu	oneiric	*
Linux	Ubuntu	precise	*
Linux	Ubuntu	precise/esm	*
Linux	Ubuntu	quantal	*
Linux	Ubuntu	upstream	*
Linux-armadaxp	Ubuntu	precise	*
Linux-armadaxp	Ubuntu	quantal	*
Linux-armadaxp	Ubuntu	upstream	*
Linux-aws	Ubuntu	upstream	*
Linux-ec2	Ubuntu	upstream	*
Linux-flo	Ubuntu	trusty	*
Linux-flo	Ubuntu	trusty/esm	*
Linux-flo	Ubuntu	upstream	*
Linux-flo	Ubuntu	utopic	*
Linux-flo	Ubuntu	vivid	*
Linux-flo	Ubuntu	vivid/stable-phone-overlay	*
Linux-flo	Ubuntu	wily	*
Linux-flo	Ubuntu	xenial	*
Linux-flo	Ubuntu	yakkety	*
Linux-fsl-imx51	Ubuntu	lucid	*
Linux-fsl-imx51	Ubuntu	upstream	*
Linux-gke	Ubuntu	upstream	*
Linux-goldfish	Ubuntu	saucy	*
Linux-goldfish	Ubuntu	trusty	*
Linux-goldfish	Ubuntu	trusty/esm	*
Linux-goldfish	Ubuntu	upstream	*
Linux-grouper	Ubuntu	saucy	*
Linux-grouper	Ubuntu	trusty	*
Linux-grouper	Ubuntu	upstream	*
Linux-grouper	Ubuntu	utopic	*
Linux-hwe	Ubuntu	upstream	*
Linux-hwe-edge	Ubuntu	upstream	*
Linux-linaro-omap	Ubuntu	oneiric	*
Linux-linaro-omap	Ubuntu	precise	*
Linux-linaro-omap	Ubuntu	quantal	*
Linux-linaro-omap	Ubuntu	upstream	*
Linux-linaro-shared	Ubuntu	oneiric	*
Linux-linaro-shared	Ubuntu	precise	*
Linux-linaro-shared	Ubuntu	quantal	*
Linux-linaro-shared	Ubuntu	upstream	*
Linux-linaro-vexpress	Ubuntu	oneiric	*
Linux-linaro-vexpress	Ubuntu	precise	*
Linux-linaro-vexpress	Ubuntu	quantal	*
Linux-linaro-vexpress	Ubuntu	upstream	*
Linux-lts-backport-maverick	Ubuntu	lucid	*
Linux-lts-backport-maverick	Ubuntu	upstream	*
Linux-lts-backport-oneiric	Ubuntu	lucid	*
Linux-lts-backport-oneiric	Ubuntu	upstream	*
Linux-lts-quantal	Ubuntu	precise	*
Linux-lts-quantal	Ubuntu	upstream	*
Linux-lts-raring	Ubuntu	upstream	*
Linux-lts-trusty	Ubuntu	upstream	*
Linux-lts-utopic	Ubuntu	upstream	*
Linux-lts-vivid	Ubuntu	upstream	*
Linux-lts-wily	Ubuntu	upstream	*
Linux-lts-xenial	Ubuntu	upstream	*
Linux-maguro	Ubuntu	saucy	*
Linux-maguro	Ubuntu	trusty	*
Linux-maguro	Ubuntu	upstream	*
Linux-mako	Ubuntu	saucy	*
Linux-mako	Ubuntu	trusty	*
Linux-mako	Ubuntu	trusty/esm	*
Linux-mako	Ubuntu	upstream	*
Linux-mako	Ubuntu	utopic	*
Linux-mako	Ubuntu	vivid	*
Linux-mako	Ubuntu	vivid/stable-phone-overlay	*
Linux-mako	Ubuntu	wily	*
Linux-mako	Ubuntu	xenial	*
Linux-mako	Ubuntu	yakkety	*
Linux-manta	Ubuntu	saucy	*
Linux-manta	Ubuntu	upstream	*
Linux-mvl-dove	Ubuntu	lucid	*
Linux-mvl-dove	Ubuntu	upstream	*
Linux-qcm-msm	Ubuntu	lucid	*
Linux-qcm-msm	Ubuntu	oneiric	*
Linux-qcm-msm	Ubuntu	precise	*
Linux-qcm-msm	Ubuntu	quantal	*
Linux-qcm-msm	Ubuntu	upstream	*
Linux-raspi2	Ubuntu	upstream	*
Linux-raspi2	Ubuntu	vivid/ubuntu-core	*
Linux-snapdragon	Ubuntu	upstream	*
Linux-ti-omap4	Ubuntu	oneiric	*
Linux-ti-omap4	Ubuntu	precise	*
Linux-ti-omap4	Ubuntu	quantal	*
Linux-ti-omap4	Ubuntu	upstream	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-0913
CWE	https://cwe.mitre.org/data/definitions/189.html

Affected Software

References