CVE-2013-2596: Linux Kernel Integer Overflow Vulnerability
First published: Sat Apr 13 2013(Updated: )
Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other products, allows local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted /dev/graphics/fb0 mmap2 system calls, as demonstrated by the Motochopper pwn program.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux kernel | >=2.6.12<3.0.75 | |
| Linux kernel | >=3.1<3.2.45 | |
| Linux kernel | >=3.3<3.4.42 | |
| Linux kernel | >=3.5<3.8.9 | |
| Motorola Android | =4.1.2 | |
| Motorola Atrix HD | ||
| Motorola Razr HD | ||
| Motorola Razr M | ||
| Qualcomm MSM8960 Firmware | ||
| Red Hat Kernel-devel | ||
| All of | ||
| Any of | ||
| Linux Kernel | >=2.6.12<3.0.75 | |
| Linux Kernel | >=3.1<3.2.45 | |
| Linux Kernel | >=3.3<3.4.42 | |
| Linux Kernel | >=3.5<3.8.9 | |
| Motorola Android | =4.1.2 | |
| Any of | ||
| Motorola Atrix HD | ||
| Motorola Razr HD | ||
| Motorola Razr M | ||
| Qualcomm MSM8960 Firmware | ||
| All of | ||
| Any of | ||
| >=2.6.12<3.0.75 | ||
| >=3.1<3.2.45 | ||
| >=3.3<3.4.42 | ||
| >=3.5<3.8.9 | ||
| =4.1.2 | ||
| Any of | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://forum.xda-developers.com/showthread.php?t=2255491
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b4cbb197c7e7a68dbad0d491242e3ca67420c13e
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=fc9bbca8f650e5f738af8806317c0a041a48ae4a
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761
- http://marc.info/?l=linux-kernel&m=136616837923938&w=2
- http://rhn.redhat.com/errata/RHSA-2015-0695.html
- http://rhn.redhat.com/errata/RHSA-2015-0782.html
- http://rhn.redhat.com/errata/RHSA-2015-0803.html
- http://www.droid-life.com/2013/04/09/root-method-released-for-droid-razr-hd-running-android-4-1-2-other-devices-too/
- http://www.droidrzr.com/index.php/topic/15208-root-motochopper-yet-another-android-root-exploit/
- http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:176
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
- http://www.securityfocus.com/bid/59264
- https://github.com/torvalds/linux/commit/b4cbb197c7e7a68dbad0d491242e3ca67420c13e
- https://github.com/torvalds/linux/commit/fc9bbca8f650e5f738af8806317c0a041a48ae4a
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b4cbb197c7e7a68dbad0d491242e3ca67420c13e
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fc9bbca8f650e5f738af8806317c0a041a48ae4a
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fc9bbca8f650e5f738af8806317c0a041a48ae4a;
- https://nvd.nist.gov/vuln/detail/CVE-2013-2596
Frequently Asked Questions
What is the severity of CVE-2013-2596?
CVE-2013-2596 has a medium severity rating due to its potential to allow local users to create risky memory mappings.
How do I fix CVE-2013-2596?
To address CVE-2013-2596, you should upgrade your Linux kernel to version 3.8.9 or later.
Which systems are affected by CVE-2013-2596?
CVE-2013-2596 affects Linux kernels prior to 3.8.9 and specific builds of Motorola's Android 4.1.2.
What risks are associated with CVE-2013-2596?
The vulnerability could allow local users to access and modify the entire kernel memory, which can lead to privilege escalation.
Is it safe to use an old version of the Linux kernel because of CVE-2013-2596?
Using an old version of the Linux kernel that is vulnerable to CVE-2013-2596 is not safe, as it exposes your system to potential exploitations.
- agent/type
- agent/title
- agent/weakness
- agent/description
- agent/remedy
- agent/severity
- agent/first-publish-date
- agent/references
- agent/author
- agent/trending
- agent/source
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-cve
- collector/nvd-index
- agent/softwarecombine
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- vendor/linux
- canonical/linux kernel
- version/linux kernel/2.6.12
- version/linux kernel/3.1
- version/linux kernel/3.3
- version/linux kernel/3.5
- vendor/motorola
- canonical/motorola android
- version/motorola android/4.1.2
- canonical/motorola atrix hd
- canonical/motorola razr hd
- canonical/motorola razr m
- vendor/qualcomm
- canonical/qualcomm msm8960 firmware
- canonical/red hat kernel-devel