CVE-2013-0913 : Integer overflow in drivers/gpu/drm/i915/i915_gem

Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel through 3.8.3, as used in Google Chrome OS before 25.0.1364.173 and other products, allows local users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted application that triggers many relocation copies, and potentially leads to a race condition.

Published 2013-03-18 15:55:01

Updated 2025-04-11 00:51:22

Source Chrome

View at NVD, CVE.org

Vulnerability category: OverflowDenial of service

Products affected by CVE-2013-0913

Linux » Linux Kernel
Versions from including (>=) 3.1 and before (<) 3.2.42
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 2.6.37 and before (<) 3.0.71
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 3.5 and before (<) 3.8.5
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 3.3 and before (<) 3.4.38
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 11.4
cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 12.1
cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2013-0913

Top countries where our scanners detected CVE-2013-0913

Top open port discovered on systems with this issue 49152

IPs affected by CVE-2013-0913 158,794

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2013-0913!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2013-0913

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 14 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2013-0913

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2013-0913

CWE-189

Assigned by: nvd@nist.gov (Primary)

References for CVE-2013-0913

https://lkml.org/lkml/2013/3/11/501

LKML: Kees Cook: [PATCH] drm/i915: bounds check execbuffer relocations
Patch;Third Party Advisory
http://openwall.com/lists/oss-security/2013/03/14/22

oss-security - Re: CVE-2013-0913 Linux kernel i915 integer overflow
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.html

[security-announce] openSUSE-SU-2013:0847-1: important: kernel: security
Third Party Advisory;VDB Entry

CVEs referencing this url
http://openwall.com/lists/oss-security/2013/03/13/9

oss-security - Re: CVE-2013-0913 Linux kernel i915 integer overflow
Mailing List
http://git.chromium.org/gitweb/?p=chromiumos/third_party/kernel.git%3Ba=commit%3Bh=c79efdf2b7f68f985922a8272d64269ecd490477

chromium Git repositories - Git at Google
Third Party Advisory
http://www.ubuntu.com/usn/USN-1813-1

USN-1813-1: Linux kernel vulnerabilities | Ubuntu security notices
Third Party Advisory;VDB Entry

CVEs referencing this url
https://bugzilla.redhat.com/show_bug.cgi?id=920471

920471 – (CVE-2013-0913) CVE-2013-0913 Kernel: drm/i915: heap writing overflow
Issue Tracking
http://www.ubuntu.com/usn/USN-1812-1

USN-1812-1: Linux kernel (Quantal HWE) vulnerabilities | Ubuntu security notices
Third Party Advisory;VDB Entry

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2013-0744.html

RHSA-2013:0744 - Security Advisory - Red Hat Customer Portal
Third Party Advisory;VDB Entry

CVEs referencing this url
http://googlechromereleases.blogspot.com/2013/03/stable-channel-update-for-chrome-os_15.html

Chrome Releases: Stable Channel Update for Chrome OS
Third Party Advisory

CVEs referencing this url
http://git.chromium.org/gitweb/?p=chromiumos/third_party/kernel.git;a=commit;h=c79efdf2b7f68f985922a8272d64269ecd490477

chromium Git repositories - Git at Google
http://www.ubuntu.com/usn/USN-1811-1

USN-1811-1: Linux kernel (OMAP4) vulnerabilities | Ubuntu security notices
Third Party Advisory;VDB Entry

CVEs referencing this url
http://openwall.com/lists/oss-security/2013/03/11/6

oss-security - CVE-2013-0913 Linux kernel i915 integer overflow
Mailing List
https://code.google.com/p/chromium-os/issues/detail?id=39733

Google Code Archive - Long-term storage for Google Code Project Hosting.
Third Party Advisory
http://www.ubuntu.com/usn/USN-1814-1

USN-1814-1: Linux kernel (OMAP4) vulnerabilities | Ubuntu security notices
Third Party Advisory;VDB Entry

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html

[security-announce] openSUSE-SU-2013:0925-1: important: kernel: security
Third Party Advisory;VDB Entry

CVEs referencing this url
https://gerrit.chromium.org/gerrit/45118

Third Party Advisory
http://www.ubuntu.com/usn/USN-1809-1

USN-1809-1: Linux kernel vulnerabilities | Ubuntu security notices
Third Party Advisory;VDB Entry

CVEs referencing this url