CVE-2013-7445 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2013-7445?

CVE-2013-7445 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-7445?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.

Vulnerability Description

The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.

CVSS Score

7.8

HIGH

AV:N/AC:L/Au:N/C:N/I:N/A:C

Confidentiality

NONE

Integrity

NONE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	<= 4.0.0

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2013-7445?

CVE-2013-7445 is a vulnerability with a CVSS score of 7.8 (HIGH). The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denia...

How severe is CVE-2013-7445?

CVE-2013-7445 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-7445?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.