[Nouveau] [Bug 61953] arbitrary memory access corrupts kernel memory, eventually crashing the kernel
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Fri Mar 29 13:12:08 PDT 2013
https://bugs.freedesktop.org/show_bug.cgi?id=61953
--- Comment #6 from Adrian Knoth <adi at drcomp.erfurt.thur.de> ---
(In reply to comment #5)
> Unaffected: Kernel 3.2.x and before
Correction, 3.2.x is affected, too.
On earlier 3.2.x kernels (sorry for the lack of precision), it takes weeks to
trigger the bug, but with the recent update in Debian unstable (3.2.42-2), it
crashes as fast as hand-rolled 3.8.x (and basically every version in between).
For the sake of reproducibility, is there a tool that mimics the behaviour of a
GTK canvas? Or basically something to allocate video memory from the X server
and then moving this area around?
I've noticed that especially hover effects (images that change on onMouseOver)
in chromium are among the first elements to show screen corruption. My
hypothesis is that these elements are already rendered off-screen and then
moved to the visible area. During this process (off-screen rendering or
moving), something goes wrong.
And maybe this something has the potential to write at arbitrary physical
addresses.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/nouveau/attachments/20130329/8b11b90d/attachment.html>
More information about the Nouveau
mailing list