A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | virglrenderer | < 0.8.1-1 | virglrenderer_0.8.1-1_all.deb |
Debian | 11 | all | virglrenderer | < 0.8.1-1 | virglrenderer_0.8.1-1_all.deb |
Debian | 10 | all | virglrenderer | < 0.7.0-2+deb10u1 | virglrenderer_0.7.0-2+deb10u1_all.deb |
Debian | 999 | all | virglrenderer | < 0.8.1-1 | virglrenderer_0.8.1-1_all.deb |
Debian | 13 | all | virglrenderer | < 0.8.1-1 | virglrenderer_0.8.1-1_all.deb |