Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002969)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002969 advisory. The vmwgbsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.7 does not validate certain levels data, which allows...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002788)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002788 advisory. The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data,...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003343)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003343 advisory. The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.5 does not check for a zero value of certain levels dat...

SUSE CVE-2017-7294

The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service system hang or crash or...

The vulnerability of the vmw_surface_define_ioctl function in the Linux operating system allows a hacker to trigger a service failure or increase their privileges.

The vulnerability of the vmwsurfacedefineioctl function in the Linux operating system is caused by a numerical overflow. Exploiting this vulnerability allows an attacker acting locally to cause a service failure or increase their privileges access to memory boundaries, system freezing through a...

DEBIAN-CVE-2017-7346

The vmwgbsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.7 does not validate certain levels data, which allows local users to cause a denial of service system hang via a crafted ioctl call for a /dev/dri/renderD device...

Linux kernel local denial of service vulnerability (CNVD-2017-04601)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the 'vmwsurfacedefineioctl' function in the drivers/gpu/drm/vmwgfx/vmwgfxsurface.c file in Linux kernel 4.10.6 and earlier. A local attacker...

UBUNTU-CVE-2017-7346

The vmwgbsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.7 does not validate certain levels data, which allows local users to cause a denial of service system hang via a crafted ioctl call for a /dev/dri/renderD device...

DEBIAN-CVE-2017-7294

The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service system hang or crash or...

UBUNTU-CVE-2017-7294

The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service system hang or crash or...

PT-2017-2269 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.10.6 Description: The issue is caused by an integer overflow in the vmw surface define ioctl function. This can be exploited by a local attacker to cause a denial of service, such as a system hang or crash, or...

DEBIAN-CVE-2017-7261

The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.5 does not check for a zero value of certain levels data, which allows local users to cause a denial of service ZEROSIZEPTR dereference, and GPF and possibly panic via a crafted ioctl cal...