CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2978

The Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers an out-of-bounds write.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.086

EPSS Ranking 92.0%

CVSS Severity

CVSS v2 Score 10.0

References

Products affected by CVE-2014-2978

Directfb » Directfb » Version: 1.4.4

cpe:2.3:a:directfb:directfb:1.4.4
Opensuse » Opensuse » Version: 13.1

cpe:2.3:o:opensuse:opensuse:13.1
Opensuse » Opensuse » Version: 13.2

cpe:2.3:o:opensuse:opensuse:13.2
Suse » Linux Enterprise Desktop » Version: 12

cpe:2.3:o:suse:linux_enterprise_desktop:12
Suse » Linux Enterprise Software Development Kit » Version: 12

cpe:2.3:o:suse:linux_enterprise_software_development_kit:12
Suse » Linux Enterprise Workstation Extension » Version: 12

cpe:2.3:o:suse:linux_enterprise_workstation_extension:12
Suse » Suse Linux Enterprise Server » Version: 12

cpe:2.3:o:suse:suse_linux_enterprise_server:12

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2978

Products

Pricing

Contact Us