High severity7.8NVD Advisory· Published May 17, 2012· Updated Apr 29, 2026

CVE-2012-0044

Description

Integer overflow in the drm_mode_dirtyfb_ioctl function in drivers/gpu/drm/drm_crtc.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 3.1.5 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted ioctl call.

Affected products

Canonical/Ubuntu Linux
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: <3.0.13

Patches

a5cd335165e3

https://github.com/torvalds/linuxvia nvd-ref

commit

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1.5nvdMailing ListPatchVendor Advisory
www.openwall.com/lists/oss-security/2012/01/12/1nvdMailing ListPatchThird Party Advisory
www.ubuntu.com/usn/USN-1555-1nvdPatchThird Party Advisory
www.ubuntu.com/usn/USN-1556-1nvdPatchThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
github.com/torvalds/linux/commit/a5cd335165e31db9dbab636fd29895d41da55dd2nvdPatchThird Party Advisory
rhn.redhat.com/errata/RHSA-2012-0743.htmlnvdThird Party Advisory
www.securityfocus.com/bid/51371nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000