12 matches found
BELL-CVE-2019-18389 CVE-2019-18389 does not affect BellSoft software
Bulletin has no description...
Debian: Security Advisory (DLA-3232-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization for ARM 64 3.0.2.0 : virglrenderer (EulerOS-SA-2020-1970)
According to the versions of the virglrenderer package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A heap-based buffer overflow flaw was found in virglrenderer. The vrendrenderertransferwriteiov function allows...
Huawei EulerOS: Security Advisory for virglrenderer (EulerOS-SA-2020-1970)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for virglrenderer (EulerOS-SA-2020-1888)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for virglrenderer (openSUSE-SU-2020:0058_1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : virglrenderer (openSUSE-2020-58)
This update for virglrenderer fixes the following issues : - CVE-2019-18388: Fixed a NULL pointer dereference which could have led to denial of service bsc1159479. - CVE-2019-18390: Fixed an out of bound read which could have led to denial of service bsc1159478. - CVE-2019-18389: Fixed a heap...
SUSE SLED15 / SLES15 Security Update : virglrenderer (SUSE-SU-2020:0017-1)
This update for virglrenderer fixes the following issues : CVE-2019-18388: Fixed a NULL pointer dereference which could have led to denial of service bsc1159479. CVE-2019-18390: Fixed an out of bound read which could have led to denial of service bsc1159478. CVE-2019-18389: Fixed a heap buffer...
SUSE SLED12 / SLES12 Security Update : virglrenderer (SUSE-SU-2020:0016-1)
This update for virglrenderer fixes the following issues : CVE-2019-18388: Fixed a NULL pointer dereference which could have led to denial of service bsc1159479. CVE-2019-18390: Fixed an out of bound read which could have led to denial of service bsc1159478. CVE-2019-18389: Fixed a heap buffer...
CVE-2019-18389
A heap-based buffer overflow in the vrendrenderertransferwriteiov function in vrendrenderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-host escape and code execution, via VIRGLCCMDRESOURCEINLINEWRITE commands...
CVE-2019-18389
CVE-2019-18389 describes a heap-based buffer overflow in the virglrenderer transfer path. Specifically, vrend_renderer_transfer_write_iov in vrend_renderer.c (virglrenderer up to version 0.8.0) can be triggered by VIRGL_CCMD_RESOURCE_INLINE_WRITE, enabling denial of service and potentially guest‑...
CVE-2019-18389
A heap-based buffer overflow flaw was found in virglrenderer. The vrendrenderertransferwriteiov function allows guest OS users to cause a denial of service or a QEMU guest-to-host escape with code execution. The highest threat from this vulnerability is to data confidentiality and integrity as we...