CVE-2013-7445 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2013-7445

Deferred

More Info Official Page

Source-cret@cert.org

Published At-16 Oct, 2015 | 01:59

Updated At-12 Apr, 2025 | 10:46

The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C

Type: Primary

Version: 2.0

Base score: 7.8

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:N/I:N/A:C

CPE Matches

Linux Kernel Organization, Inc

>>linux_kernel>>Versions up to 4.0.0(inclusive)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.1

cpe:2.3:o:linux:linux_kernel:4.0.1:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.2

cpe:2.3:o:linux:linux_kernel:4.0.2:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.3

cpe:2.3:o:linux:linux_kernel:4.0.3:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.4

cpe:2.3:o:linux:linux_kernel:4.0.4:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.5

cpe:2.3:o:linux:linux_kernel:4.0.5:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.6

cpe:2.3:o:linux:linux_kernel:4.0.6:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.7

cpe:2.3:o:linux:linux_kernel:4.0.7:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.8

cpe:2.3:o:linux:linux_kernel:4.0.8:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.0.9

cpe:2.3:o:linux:linux_kernel:4.0.9:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.1

cpe:2.3:o:linux:linux_kernel:4.1.1:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.2

cpe:2.3:o:linux:linux_kernel:4.1.2:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.3

cpe:2.3:o:linux:linux_kernel:4.1.3:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.4

cpe:2.3:o:linux:linux_kernel:4.1.4:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.5

cpe:2.3:o:linux:linux_kernel:4.1.5:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.6

cpe:2.3:o:linux:linux_kernel:4.1.6:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.7

cpe:2.3:o:linux:linux_kernel:4.1.7:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.8

cpe:2.3:o:linux:linux_kernel:4.1.8:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.9

cpe:2.3:o:linux:linux_kernel:4.1.9:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.1.10

cpe:2.3:o:linux:linux_kernel:4.1.10:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.2.1

cpe:2.3:o:linux:linux_kernel:4.2.1:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.2.2

cpe:2.3:o:linux:linux_kernel:4.2.2:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>4.2.3

cpe:2.3:o:linux:linux_kernel:4.2.3:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-399	Primary	nvd@nist.gov

CWE ID: CWE-399

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://bugzilla.kernel.org/show_bug.cgi?id=60533	cret@cert.org	N/A
https://bugzilla.kernel.org/show_bug.cgi?id=60533	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: https://bugzilla.kernel.org/show_bug.cgi?id=60533

Source: cret@cert.org

Resource: N/A

Hyperlink: https://bugzilla.kernel.org/show_bug.cgi?id=60533

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A