CVE-2017-5956

Published: Mar 20, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

The vrend_draw_vbo function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (out-of-bounds array access and QEMU process crash) via vectors involving vertext_buffer_index.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

GLSA-201707-06

vendor-advisory

x_refsource_GENTOO

[virglrenderer-devel] 20170210 [ANNOUNCE] virglrenderer 0.6.0

mailing-list

x_refsource_MLIST

96187

vdb-entry

x_refsource_BID

https://cgit.freedesktop.org/virglrenderer/commit/?id=a5ac49940c40ae415eac0cf912eac7070b4ba95d

x_refsource_CONFIRM

[oss-security] 20170213 CVE-2017-5956 virglrenderer: Virglrenderer: OOB access while in vrend_draw_vbo

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-5956

Description

Affected Products

References