From $URL : This flaw could lead to a kernel heap overflow by processes with access to the DRM driver: https://lkml.org/lkml/2013/3/11/501
Patch in mainline 3.10 onwards