CVE-2012-0044

Integer overflow in the drm_mode_dirtyfb_ioctl function in drivers/gpu/drm/drm_crtc.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 3.1.5 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted ioctl call.

From the Ubuntu Security Team

Chen Haogang discovered an integer overflow that could result in memory corruption. A local unprivileged user could use this to crash the system.

• How can I get the fixes?
• What do statuses mean?
• Patch details

References

• MITRE
• NVD
• Launchpad
• Debian

Related Ubuntu Security Notices (USN)

• USN-1362-1
• Linux kernel vulnerabilities
• 13 February 2012
• USN-1356-1
• Linux kernel (OMAP4) vulnerabilities
• 6 February 2012
• USN-1340-1
• Linux kernel (Oneiric backport) vulnerabilities
• 23 January 2012
• USN-1336-1
• Linux kernel vulnerability
• 23 January 2012
• USN-1556-1
• Linux kernel (EC2) vulnerabilities
• 6 September 2012
• USN-1387-1
• Linux kernel (Maverick backport) vulnerabilities
• 6 March 2012
• USN-1330-1
• Linux kernel (OMAP4) vulnerabilities
• 13 January 2012
• USN-1394-1
• linux-ti-omap4 vulnerabilities
• 7 March 2012
• USN-1361-1
• Linux kernel vulnerabilities
• 13 February 2012
• USN-1555-1
• Linux kernel vulnerabilities
• 5 September 2012
• USN-1386-1
• Linux kernel (Natty backport) vulnerabilities
• 6 March 2012

Other references

• https://www.cve.org/CVERecord?id=CVE-2012-0044