CVE-2012-2864

Description

Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute arbitrary code via unspecified vectors that trigger an "array overflow."

How to fix CVE-2012-2864

To remediate CVE-2012-2864, upgrade the affected package to a fixed version below.

• Debian/mesa—upgrade to 8.0.4-2 or later

Is CVE-2012-2864 being exploited?

Moderate — EPSS is 5.7%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 8.0.4-2

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2012-2864