Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other products, allows local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted /dev/graphics/fb0 mmap2 system calls, as demonstrated by the Motochopper pwn program.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 07 Feb 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics kev

{'dateAdded': '2022-09-15'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 13 Aug 2024 23:45:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-08-27T20:32:50.719Z

Reserved: 2013-03-15T00:00:00.000Z

Link: CVE-2013-2596

cve-icon Vulnrichment

Updated: 2024-08-06T15:44:32.640Z

cve-icon NVD

Status : Deferred

Published: 2013-04-13T02:59:46.627

Modified: 2025-04-11T00:51:21.963

Link: CVE-2013-2596

cve-icon Redhat

Severity : Important

Publid Date: 2013-04-09T00:00:00Z

Links: CVE-2013-2596 - Bugzilla

cve-icon OpenCVE Enrichment

No data.