Upstream information

CVE-2013-1872 at MITRE

Description

The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds array access, related to the fs_visitor::remove_dead_constants function. NOTE: this issue might be related to CVE-2013-0796.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 6.82
Vector AV:N/AC:M/Au:N/C:P/I:P/A:P
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
SUSE Bugzilla entry: 828007 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 11 SP3
  • Mesa >= 9.0.3-0.19.1
  • Mesa-32bit >= 9.0.3-0.19.1
Patchnames:
sledsp3-Mesa
SUSE Linux Enterprise Server 11 SP3
  • Mesa >= 9.0.3-0.19.1
  • Mesa-32bit >= 9.0.3-0.19.1
  • Mesa-x86 >= 9.0.3-0.19.1
Patchnames:
slessp3-Mesa
SUSE Linux Enterprise Server 11 SP4
  • Mesa >= 9.0.3-0.28.29.2
  • Mesa-32bit >= 9.0.3-0.28.29.2
  • Mesa-x86 >= 9.0.3-0.28.29.2
Patchnames:
SUSE Linux Enterprise Server 11 SP4 GA Mesa-32bit
SUSE Linux Enterprise Server for VMWare 11 SP3
  • Mesa >= 9.0.3-0.19.1
  • Mesa-32bit >= 9.0.3-0.19.1
  • Mesa-x86 >= 9.0.3-0.19.1
Patchnames:
slessp3-Mesa
SUSE Linux Enterprise Software Development Kit 11 SP3
  • Mesa-devel >= 9.0.3-0.19.1
  • Mesa-devel-32bit >= 9.0.3-0.19.1
Patchnames:
sdksp3-Mesa
SUSE Linux Enterprise Software Development Kit 11 SP4
  • Mesa-devel >= 9.0.3-0.28.29.2
  • Mesa-devel-32bit >= 9.0.3-0.28.29.2
Patchnames:
SUSE Linux Enterprise Software Development Kit 11 SP4 GA Mesa-devel-32bit
SUSE Linux Enterprise Software Development Kit 11 SP3
  • Mesa-devel >= 9.0.3-0.19.1
Builds
SAT Patch Nr: 8011
SUSE Linux Enterprise Software Development Kit 11 SP3
  • Mesa-devel >= 9.0.3-0.19.1
  • Mesa-devel-32bit >= 9.0.3-0.19.1
Builds
SAT Patch Nr: 8011
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • Mesa >= 9.0.3-0.19.1
Builds
SAT Patch Nr: 8011
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • Mesa >= 9.0.3-0.19.1
  • Mesa-32bit >= 9.0.3-0.19.1
Builds
SAT Patch Nr: 8011
SUSE Linux Enterprise Server 11 SP3
  • Mesa >= 9.0.3-0.19.1
  • Mesa-x86 >= 9.0.3-0.19.1
Builds
SAT Patch Nr: 8011