Virglrendererproject Virglrenderer

Do you want an email whenever new security vulnerabilities are reported in Virglrendererproject Virglrenderer?

By the Year

In 2024 there have been 0 vulnerabilities in Virglrendererproject Virglrenderer . Virglrenderer did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2024	0	0.00
2023	0	0.00
2022	2	6.65
2021	0	0.00
2020	2	5.50
2019	4	6.48
2018	0	0.00

It may take a day or so for new Virglrenderer vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Virglrendererproject Virglrenderer Security Vulnerabilities

A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer)

CVE-2022-0175 5.5 - Medium - August 26, 2022

A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host, possibly leading to information disclosure.

Missing Initialization of Resource

An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer)

CVE-2022-0135 7.8 - High - August 25, 2022

An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer). This flaw allows a malicious guest to create a specially crafted virgil resource and then issue a VIRTGPU_EXECBUFFER ioctl, leading to a denial of service or possible code execution.

Memory Corruption

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands

CVE-2020-8002 5.5 - Medium - January 27, 2020

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands that attempt to launch a grid without previously providing a Compute Shader (CS).

NULL Pointer Dereference

A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1

CVE-2020-8003 5.5 - Medium - January 27, 2020

A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service by triggering texture allocation failure, because vrend_renderer_resource_allocated_texture is not an appropriate place for a free.

Double-free

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0

CVE-2019-18388 5.5 - Medium - December 23, 2019

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via malformed commands.

NULL Pointer Dereference

A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0

CVE-2019-18389 7.8 - High - December 23, 2019

A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-host escape and code execution, via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands.

Memory Corruption

An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0

CVE-2019-18390 7.1 - High - December 23, 2019

An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_BLIT commands.

Out-of-bounds Read

A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0

CVE-2019-18391 5.5 - Medium - December 23, 2019

Memory Corruption

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Debian Linux or by Virglrendererproject? Click the Watch button to subscribe.

Virglrendererproject
Vendor

Virglrendererproject Virglrenderer
Product

Virglrendererproject Virglrenderer

By the Year

Recent Virglrendererproject Virglrenderer Security Vulnerabilities

A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer) CVE-2022-0175 5.5 - Medium - August 26, 2022

An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer) CVE-2022-0135 7.8 - High - August 25, 2022

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands CVE-2020-8002 5.5 - Medium - January 27, 2020

A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1 CVE-2020-8003 5.5 - Medium - January 27, 2020

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 CVE-2019-18388 5.5 - Medium - December 23, 2019

A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 CVE-2019-18389 7.8 - High - December 23, 2019

An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 CVE-2019-18390 7.1 - High - December 23, 2019

A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 CVE-2019-18391 5.5 - Medium - December 23, 2019

Stay on top of Security Vulnerabilities

Virglrendererproject Vendor

Virglrendererproject VirglrendererProduct

A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer)

CVE-2022-0175 5.5 - Medium - August 26, 2022

An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer)

CVE-2022-0135 7.8 - High - August 25, 2022

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands

CVE-2020-8002 5.5 - Medium - January 27, 2020

A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1

CVE-2020-8003 5.5 - Medium - January 27, 2020

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0

CVE-2019-18388 5.5 - Medium - December 23, 2019

A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0

CVE-2019-18389 7.8 - High - December 23, 2019

An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0

CVE-2019-18390 7.1 - High - December 23, 2019

A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0

CVE-2019-18391 5.5 - Medium - December 23, 2019

Virglrendererproject
Vendor

Virglrendererproject Virglrenderer
Product