CVE-2004-1056 — Kernel vulnerability

8 documents6 sources

Severity

6.4MEDIUMNVD

EPSS

3.4%

top 12.64%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Ubuntu Linux

Timeline

PublishedJan 10

Latest updateApr 29

Description

Direct Rendering Manager (DRM) driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote attackers or local users to cause a denial of service (X Server crash) and possibly modify the video output.

CVSS vector

AV:N/AC:L/C:N/I:P/A:PExploitability: 10.0 | Impact: 4.9

Affected Packages1 packages

▶NVDlinux/linux_kernel12 versions+11

Also affects: Ubuntu Linux 4.1

🔴Vulnerability Details

GHSA

GHSA-jxqr-rj44-7m7x: Direct Rendering Manager (DRM) driver in Linux kernel 2↗2022-04-29

▶

CVEList

CVE-2004-1056: Direct Rendering Manager (DRM) driver in Linux kernel 2↗2004-12-22

▶

📋Vendor Advisories

Ubuntu

Linux kernel vulnerabilities↗2004-12-15

▶

Red Hat

security flaw↗2004-12-14

▶

💬Community

Bugzilla

CVE-2004-1056 security flaw↗2018-08-16

▶

Bugzilla

CVE-2004-1056 insufficient locking checks in DRM code↗2005-01-06

▶

Bugzilla

CVE-2004-1056 insufficient locking checks in DRM code↗2004-11-09

▶