Multiple integer overflows in Alchemy LCD frame-buffer...
Moderate severity
Unreviewed
Published
May 17, 2022
to the GitHub Advisory Database
•
Updated Feb 21, 2023
Description
Published by the National Vulnerability Database
Nov 12, 2013
Published to the GitHub Advisory Database
May 17, 2022
Last updated
Feb 21, 2023
Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted mmap operations, related to the (1) au1100fb_fb_mmap function in drivers/video/au1100fb.c and the (2) au1200fb_fb_mmap function in drivers/video/au1200fb.c.
References