CVE-2013-4740

Name of the Vulnerable Software and Affected Versions Linux kernel versions 3.x

Description The issue relies on user-space length values for kernel-memory copies of procfs file content, allowing attackers to gain privileges or cause a denial of service (memory corruption) via an application that provides crafted values.

Recommendations For Linux kernel version 3.x, consider restricting access to the goodix tool.c file in the Goodix gt915 touchscreen driver to minimize the risk of exploitation. As a temporary workaround, avoid using crafted user-space length values for kernel-memory copies of procfs file content until a patch is available.