CVE-2013-1993

Published Jun 15, 2013

Last updated 2 years ago

CVSS info 6.8

Overview

Description: Multiple integer overflows in X.org libGLX in Mesa 9.1.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XF86DRIOpenConnection and (2) XF86DRIGetClientDriverName functions.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-189

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mesa3d:mesa:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1336C80A-F264-44BD-A8A7-70573060BC10",
            "versionEndIncluding": "9.1.1"
          },
          {
            "criteria": "cpe:2.3:a:mesa3d:mesa:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB7409B2-B7A8-45E9-933B-7A31CA087409"
          },
          {
            "criteria": "cpe:2.3:a:mesa3d:mesa:9.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B17F257-995C-4607-B3E0-A45C763E776E"
          },
          {
            "criteria": "cpe:2.3:a:mesa3d:mesa:9.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE40F363-6432-4D72-935A-BBC42E02B697"
          },
          {
            "criteria": "cpe:2.3:a:mesa3d:mesa:9.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6AF7174-3AD5-4D53-8CC4-A222F2AB93EA"
          },
          {
            "criteria": "cpe:2.3:a:mesa3d:mesa:9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3DD22E5-B337-4308-AFD3-6B89FB227D0C"
          },
          {
            "criteria": "cpe:2.3:a:x:libglx:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EE652AF-8A37-4B16-8B0D-1DEC27BAB3BA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References