Improper Memory Buffer Restriction in Intel i915 Graphics Drivers for Linux
CVE-2023-28410

8.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) I915 Graphics Drivers For Linux
Vendor: CVE Published:; 10 May 2023

What is CVE-2023-28410?

The Intel i915 Graphics drivers for Linux prior to kernel version 6.2.10 contain a flaw related to the improper restriction of operations within the memory buffer's bounds. This vulnerability could allow an authenticated user to potentially escalate their privileges through local access, leading to unauthorized actions within the system. Users and administrators are advised to review the relevant security advisories for mitigations and updates.

Affected Version(s)

Intel(R) i915 Graphics drivers for linux before kernel version 6.2.10

References

https://www.intel.com/content/www/us/en/security-center/a...

https://security.netapp.com/advisory/ntap-20230622-0004/

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 10, 2023
Vulnerability Reserved
Mar 22, 2023