22 matches found
CVE-2026-22166
A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the process executing graphics workload has system privileges this could enable subsequent exploit on the...
Azure Linux 3.0 Security Update: SDL2 (CVE-2022-4743)
The version of SDL2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-4743 advisory. - A potential memory leak issue was discovered in SDL2 in GLESCreateTexture function in SDLrendergles.c. The...
EUVD-2020-24942
Malware in sbrugna...
EUVD-2015-1375
Malware in sbrugna...
CVE-2020-3671
Use-after-free issue could occur due to dangling pointer when generating a frame buffer in OpenGL ES in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8009, Nicobar, QCM2150, QCS405, Saipan, SDM845, SM8150, SM8250, SXR2130...
Mageia: Security Advisory (MGASA-2023-0020)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated sdl2 packages fix security vulnerability
Potential memory leak when creating a texture for an OpenGL ES image CVE-2022-4743...
MGASA-2023-0020 Updated sdl2 packages fix security vulnerability
Potential memory leak when creating a texture for an OpenGL ES image CVE-2022-4743...
SUSE-SU-2023:0069-1 Security update for SDL2
This update for SDL2 fixes the following issues: - CVE-2022-4743: Fixed a potential memory leak when creating a texture for an OpenGL ES image bsc1206727...
Zutty: Arbitrary Code Execution
Background Zutty is an X terminal emulator rendering through OpenGL ES Compute Shaders. Description Zutty does not correctly handle invalid DECRQSS commands, which can be exploited to run arbitrary commands in the terminal. Impact Untrusted text written to the Zutty terminal can achieve arbitrary...
CVE-2020-3671
Use-after-free issue could occur due to dangling pointer when generating a frame buffer in OpenGL ES in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8009, Nicobar, QCM2150, QCS405, Saipan, SDM845, SM8150, SM8250, SXR2130...
Design/Logic Flaw
Use-after-free issue could occur due to dangling pointer when generating a frame buffer in OpenGL ES in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8009, Nicobar, QCM2150, QCS405, Saipan, SDM845, SM8150, SM8250, SXR2130...
CVE-2020-3671
Use-after-free issue could occur due to dangling pointer when generating a frame buffer in OpenGL ES in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8009, Nicobar, QCM2150, QCS405, Saipan, SDM845, SM8150, SM8250, SXR2130...
OpenGL ES 2.0 Demo - Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application OpenGL ES 2.0 Demo published at the 'play' market has multiple vulnerabilities...
OpenGL ES 3.0 benchmark - Customized SSL, Insecure KeyStore, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application OpenGL ES 3.0 benchmark published at the 'play' market has multiple vulnerabilities...
CVE-2015-1234
Race condition in gpu/commandbuffer/service/gles2cmddecoder.cc in Google Chrome before 41.0.2272.118 allows remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact by manipulating OpenGL ES commands...
Race condition
Race condition in gpu/commandbuffer/service/gles2cmddecoder.cc in Google Chrome before 41.0.2272.118 allows remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact by manipulating OpenGL ES commands...
CVE-2015-1234
CVE-2015-1234 is a vulnerability in Google Chrome/Chromium prior to 41.0.2272.118. It concerns a race condition in gpu/command_buffer/service/gles2_cmd_decoder.cc that could allow a remote attacker to cause a denial of service (buffer overflow) or other impact by manipulating OpenGL ES commands. ...
CVE-2015-1234
Removed by vendor...
CVE-2015-1234
Race condition in gpu/commandbuffer/service/gles2cmddecoder.cc in Google Chrome before 41.0.2272.118 allows remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact by manipulating OpenGL ES commands...