CVE-2026-29075

Mesa is an open-source Python library for agent-based modeling, simulating complex systems and exploring emergent behaviors. In version 3.5.0 and prior, checking out of untrusted code in benchmarks.yml workflow may lead to code execution in privileged runner. This issue has been patched via commi...

SUSE CVE-2023-45931

Mesa 23.0.4 was discovered to contain a NULL pointer dereference in checkxshm for the haserror state. NOTE: this is disputed because there is no scenario in which the vulnerability was demonstrated...

UBUNTU-CVE-2023-45922

DISPUTED glxpbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation violation when calling glXGetDrawableAttribute. NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server...

DEBIAN-CVE-2023-45931

Mesa 23.0.4 was discovered to contain a NULL pointer dereference in checkxshm for the haserror state. NOTE: this is disputed because there is no scenario in which the vulnerability was demonstrated...

PT-2024-13304 · Mesa +2 · Mesa +2

Name of the Vulnerable Software and Affected Versions: Mesa version 23.0.4 Description: A segmentation violation was discovered in glx pbuffer.c when calling glXGetDrawableAttribute. This issue is disputed as there are no common situations where users require uninterrupted operation with an...

PT-2024-13299 · Mesa +2 · Mesa +2

Name of the Vulnerable Software and Affected Versions: Mesa version 23.0.4 Description: A NULL pointer dereference was discovered in Mesa via the function dri2GetGlxDrawableFromXDrawableId. This issue is triggered when the X11 server sends a DRI2 BufferSwapComplete event unexpectedly while the...

CVE-2013-1993

Multiple integer overflows in X.org libGLX in Mesa 9.1.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the 1 XF86DRIOpenConnection and 2 XF86DRIGetClientDriverName functions...