What is CVE-2013-1872?

CVE-2013-1872 is a vulnerability in Mesa3d Mesa, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2013-08-19.

Is CVE-2013-1872 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Mesa3d Mesa

CVE-2013-1872

The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds ar…

Vulnerability class: Buffer Overflow

EPSS: 0.011 (78.7th percentile) — read the EPSS interpretation.

Affected products

Mesa3d Mesa — versions 9.0, 9.0.1, 9.0.2
Canonical Ubuntu_linux — versions 12.04, 12.10, 13.04
Opensuse — versions 12.2, 12.3
Redhat Enterprise_linux — versions 6.0
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

secalert@redhat.com (x_refsource_MISC)
secalert@redhat.com (x_refsource_CONFIRM)
DSA-2704 (vendor-advisory, x_refsource_DEBIAN)
USN-1888-1 (x_refsource_UBUNTU, vendor-advisory)
60285 (vdb-entry, x_refsource_BID)
RHSA-2013:0897 (x_refsource_REDHAT, vendor-advisory)
openSUSE-SU-2013:1188 (vendor-advisory, x_refsource_SUSE)
secalert@redhat.com (x_refsource_CONFIRM)
SUSE-SU-2013:1175 (vendor-advisory, x_refsource_SUSE)

Frequently asked questions

What is CVE-2013-1872?: CVE-2013-1872 is a vulnerability in Mesa3d Mesa, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2013-08-19.
Is CVE-2013-1872 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.