CVE-2014-2977 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Directfb

CWE-1896 documents5 sources

Severity

10.0CRITICALNVD

EPSS

9.6%

top 7.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Directfb Opensuse Suse Linux Enterprise Desktop +3 more

Timeline

PublishedJun 11

Latest updateMay 14

Description

Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.13 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers a stack-based buffer overflow.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages6 packages

▶NVDdirectfb/directfb1.4.13

▶NVDopensuse/opensuse13.1, 13.2+1

▶NVDsuse/linux_enterprise_desktop12

▶NVDsuse/suse_linux_enterprise_server12

▶NVDsuse/linux_enterprise_workstation_extension12

🔴Vulnerability Details

GHSA

GHSA-r25x-m6r4-r5pf: Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher↗2022-05-14

▶

CVEList

CVE-2014-2977: Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher↗2014-06-11

▶

📋Vendor Advisories

Debian

CVE-2014-2977: directfb - Multiple integer signedness errors in the Dispatch_Write function in proxy/dispa...↗2014

▶

💬Community

Bugzilla

CVE-2014-2977 DirectFB: integer signedness vulnerability↗2014-05-16

▶

Bugzilla

CVE-2014-2977 DirectFB: integer signedness vulnerability [fedora-all]↗2014-05-16

▶