CVE-2007-3851

high

Description

The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager (DRM) to write to arbitrary memory locations and gain privileges via a crafted batchbuffer.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11196

https://issues.rpath.com/browse/RPL-1620

http://www.vupen.com/english/advisories/2007/2854

http://www.ubuntu.com/usn/usn-510-1

http://www.ubuntu.com/usn/usn-509-1

http://www.securityfocus.com/bid/25263

http://www.redhat.com/support/errata/RHSA-2007-0705.html

http://www.novell.com/linux/security/advisories/2007_53_kernel.html

http://www.novell.com/linux/security/advisories/2007_51_kernel.html

http://www.mandriva.com/security/advisories?name=MDVSA-2008:105

http://www.debian.org/security/2007/dsa-1356

http://secunia.com/advisories/27227

http://secunia.com/advisories/26760

http://secunia.com/advisories/26664

http://secunia.com/advisories/26643

http://secunia.com/advisories/26500

http://secunia.com/advisories/26450

http://secunia.com/advisories/26389

http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.2

Details

Source: Mitre, NVD

Published: 2007-08-13

Updated: 2025-04-09

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:L/AC:H/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00086