Lucene search

[email protected]CVE-2019-18390

HistoryDec 23, 2019 - 4:15 p.m.

CVE-2019-18390

2019-12-2316:15:00

CWE-125

[email protected]

web.nvd.nist.gov

143

security

cve-2019-18390

denial of service

vrend_blit_need_swizzle

virglrenderer

nvd

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

6.4 Medium

AI Score

Confidence

High

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:N/A:P

0.0004 Low

EPSS

Percentile

13.9%

JSON

An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_BLIT commands.

CPENameOperatorVersion
virglrenderer_project:virglrenderervirglrenderer project virglrendererle0.8.0
redhat:enterprise_linuxredhat enterprise linuxeq8.0
opensuse:leapopensuse leapeq15.1
debian:debian_linuxdebian debian linuxeq10.0

CPE	Name	Operator	Version
virglrenderer_project:virglrenderer	virglrenderer project virglrenderer	le	0.8.0
redhat:enterprise_linux	redhat enterprise linux	eq	8.0
opensuse:leap	opensuse leap	eq	15.1
debian:debian_linux	debian debian linux	eq	10.0

References

lists.opensuse.org/opensuse-security-announce/2020-01/msg00028.html

access.redhat.com/security/cve/cve-2019-18390

bugzilla.redhat.com/show_bug.cgi?id=1765584

gitlab.freedesktop.org/virgl/virglrenderer/commit/24f67de7a9088a873844a39be03cee6882260ac9

gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/314/diffs?commit_id=d2cdbcf6a8f2317f250fd54f08aa35dde2fa3e30#3cd772559e0d73afa136d6818023cfd0c4c8ecc0_0_151

lists.debian.org/debian-lts-announce/2022/12/msg00017.html