CVE-2019-18390

Published: Dec 23, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_BLIT commands.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/314/diffs?commit_id=d2cdbcf6a8f2317f250fd54f08aa35dde2fa3e30#3cd772559e0d73afa136d6818023cfd0c4c8ecc0_0_151

https://gitlab.freedesktop.org/virgl/virglrenderer/commit/24f67de7a9088a873844a39be03cee6882260ac9

Red Hat

vendor-advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1765584

openSUSE-SU-2020:0058

vendor-advisory

[debian-lts-announce] 20221207 [SECURITY] [DLA 3232-1] virglrenderer security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-18390

Description

Affected Products

References