CVE-2007-3851

Published Aug 13, 2007

Last updated 7 years ago

Overview

Description: The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager (DRM) to write to arbitrary memory locations and gain privileges via a crafted batchbuffer.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6
Impact score: 10
Exploitability score: 1.5
Vector string: AV:L/AC:H/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37B99E64-8A0A-4B5E-A2E5-34F2E612F7DE",
            "versionEndIncluding": "2.6.22.1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:i915_chipset:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A9A78D73-3C00-47E8-A8E7-285A2C83A8A6"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References