Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2022-0401
HistoryNov 02, 2022 - 1:58 a.m.

Updated virglrenderer packages fix security vulnerability

2022-11-0201:58:59
Gentoo Foundation
advisories.mageia.org
11

0.0005 Low

EPSS

Percentile

16.7%

JSON

An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer). This flaw allows a malicious guest to create a specially crafted virgil resource and then issue a VIRTGPU_EXECBUFFER ioctl, leading to a denial of service or possible code execution. (CVE-2022-0135) A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host, possibly leading to information disclosure. (CVE-2022-0175)

OSVersionArchitecturePackageVersionFilename
Mageia8noarchvirglrenderer< 0.8.2-1.20200212git7d204f39.1virglrenderer-0.8.2-1.20200212git7d204f39.1.mga8

Related

ubuntu 1
nessus 11
osv 4
openvas 11
gentoo 1
prion 2
cve 2
cbl_mariner 4
ubuntucve 2
debiancve 2
suse 3
veracode 2
cvelist 2
rosalinux 1
alpinelinux 2
redhatcve 2
debian 1
ubuntu
ubuntu
virglrenderer vulnerabilities
2022-02-28 00:00:00
nessus
nessus
Ubuntu 20.04 LTS : virglrenderer vulnerabilities (USN-5309-1)
2022-02-28 00:00:00
GLSA-202210-05 : virglrenderer: Multiple vulnerabilities
2022-10-16 00:00:00
SUSE SLES12 Security Update : virglrenderer (SUSE-SU-2022:0478-1)
2022-02-18 00:00:00
osv
osv
virglrenderer vulnerabilities
2022-02-28 17:44:06
CVE-2022-0135
2022-08-25 18:15:09
CVE-2022-0175
2022-08-26 18:15:08
openvas
openvas
Ubuntu: Security Advisory (USN-5309-1)
2022-03-01 00:00:00
Mageia: Security Advisory (MGASA-2022-0401)
2022-11-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2395-1)
2022-07-14 00:00:00
gentoo
gentoo
virglrenderer: Multiple vulnerabilities
2022-10-16 00:00:00
prion
prion
Design/Logic Flaw
2022-08-25 18:15:00
Information disclosure
2022-08-26 18:15:00
cve
cve
CVE-2022-0135
2022-08-25 18:15:00
CVE-2022-0175
2022-08-26 18:15:00
cbl_mariner
cbl_mariner
CVE-2022-0135 affecting package virglrenderer for versions less than 0.9.1-3
2024-04-17 22:02:46
CVE-2022-0135 affecting package virglrenderer for versions less than 0.9.1-2
2022-09-16 06:05:32
CVE-2022-0175 affecting package virglrenderer for versions less than 0.9.1-3
2022-10-05 23:33:43
ubuntucve
ubuntucve
CVE-2022-0135
2022-02-01 00:00:00
CVE-2022-0175
2022-02-01 00:00:00
debiancve
debiancve
CVE-2022-0135
2022-08-25 18:15:00
CVE-2022-0175
2022-08-26 18:15:00
suse
suse
Security update for virglrenderer (important)
2022-02-17 00:00:00
Security update for virglrenderer (important)
2022-07-14 00:00:00
Security update for virglrenderer (important)
2022-01-18 00:00:00
veracode
veracode
Out-of-bounds Write
2022-09-30 17:48:29
Information Disclosure
2022-09-30 19:19:16
cvelist
cvelist
CVE-2022-0135
2022-08-25 00:00:00
CVE-2022-0175
2022-08-26 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2267
2023-10-22 05:46:59
alpinelinux
alpinelinux
CVE-2022-0135
2022-08-25 18:15:00
CVE-2022-0175
2022-08-26 18:15:00
redhatcve
redhatcve
CVE-2022-0135
2022-01-31 16:03:30
CVE-2022-0175
2022-01-31 11:55:20
debian
debian
[SECURITY] [DLA 3232-1] virglrenderer security update
2022-12-07 17:25:54

0.0005 Low

EPSS

Percentile

16.7%

JSON
Related for MGASA-2022-0401
ubuntu1nessus11osv4openvas11gentoo1prion2cve2cbl_mariner4ubuntucve2debiancve2suse3veracode2cvelist2rosalinux1alpinelinux2redhatcve2debian1