Acknowledged
Created: Oct 28, 2015
Updated: Jan 21, 2021
Found In Version: 8.0
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7445