483446 – (CVE-2013-2596) Kernel: fb_map Privilege Escalation (CVE-2013-2596)

Bug 483446 (CVE-2013-2596) - Kernel: fb_map Privilege Escalation (CVE-2013-2596)

Summary: Kernel: fb_map Privilege Escalation (CVE-2013-2596)

Status:	RESOLVED FIXED

Alias:	CVE-2013-2596

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Kernel Security

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2013-09-03 01:41 UTC by GLSAMaker/CVETool Bot
Modified:	2022-03-25 15:35 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description GLSAMaker/CVETool Bot gentoo-dev

2013-09-03 01:41:26 UTC

CVE-2013-2596 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2596):
  Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the
  Linux kernel before 3.8.9, as used in a certain Motorola build of Android
  4.1.2 and other products, allows local users to create a read-write memory
  mapping for the entirety of kernel memory, and consequently gain privileges,
  via crafted /dev/graphics/fb0 mmap2 system calls, as demonstrated by the
  Motochopper pwn program.


Does this affect any LTS kernels?

Comment 1 Agostino Sarubbo gentoo-dev

2013-09-03 13:51:43 UTC

(In reply to GLSAMaker/CVETool Bot from comment #0)
> Does this affect any LTS kernels?

Yes, this is fixed in:

3.0.75 - https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.0.75
3.4.42 - https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.42
3.2.45 - https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.45

Comment 2 John Helmert III archtester

2022-03-25 15:35:13 UTC

Yep, fix in 3.9 onwards.