EUVD-2017-14681

Malware in sbrugna...

CVE-2025-2509

Out-of-Bounds Read in Virglrenderer in ChromeOS 16093.57.0 allows a malicious guest VM to achieve arbitrary address access within the crosvm sandboxed process, potentially leading to VM escape via crafted vertex elements data triggering an out-of-bounds read in utilformatdescription...

CVE-2025-2509

Out-of-Bounds Read in Virglrenderer in ChromeOS 16093.57.0 allows a malicious guest VM to achieve arbitrary address access within the crosvm sandboxed process, potentially leading to VM escape via crafted vertex elements data triggering an out-of-bounds read in utilformatdescription...

CVE-2025-2509

Out-of-Bounds Read in Virglrenderer in ChromeOS 16093.57.0 allows a malicious guest VM to achieve arbitrary address access within the crosvm sandboxed process, potentially leading to VM escape via crafted vertex elements data triggering an out-of-bounds read in utilformatdescription...

PT-2025-19813 · Google +1 · Virglrenderer +1

Name of the Vulnerable Software and Affected Versions: Virglrenderer in ChromeOS version 16093.57.0 Description: The issue is an out-of-bounds read in Virglrenderer that allows a malicious guest VM to achieve arbitrary address access within the crosvm sandboxed process. This could potentially lea...

Advisory ROSA-SA-2024-2547

software: virglrenderer 0.8.1 OS: ROSA-CHROME packageevrstring: virglrenderer-0.8.1-4 CVE-ID: CVE-2020-8002 BDU-ID: 2023-00917 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the vrendrenderer.c component of the Virglrenderer virtual OpenGL renderer is related to pointer dereferencing errors...

MGASA-2022-0401 Updated virglrenderer packages fix security vulnerability

An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer virglrenderer. This flaw allows a malicious guest to create a specially crafted virgil resource and then issue a VIRTGPUEXECBUFFER ioctl, leading to a denial of service or possible code execution. CVE-2022-0135 A flaw was...

Out-of-bounds Write

virglrenderer:edge is vulnerable to out-of-bounds write. The VirGL virtual OpenGL renderer virglrenderer allows a malicious guest to create a specially crafted virgil resource and then issue a VIRTGPUEXECBUFFER ioctl, leading to a denial of service or possible code execution...

Denial Of Service (DoS)

virglrenderer is vulnerable to denial of service DoS. The vulnerability exists as an out-of-bounds read in the vrendblitneedswizzle function in vrendrenderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGLCCMDBLIT commands...

Arbitrary Code Execution

virglrenderer is vulnerable to arbitrary code execution. A heap-based buffer overflow in the vrendrenderertransferwriteiov function in vrendrenderer.c allows guest OS users to cause a denial of service condition and execute arbitrary code via VIRGLCCMDRESOURCEINLINEWRITE commands...

DEBIAN-CVE-2017-5937

The utilformatispureuint function in vrendrenderer.c in Virgil 3d project aka virglrenderer 0.6.0 and earlier allows local guest OS users to cause a denial of service NULL pointer dereference via a crafted VIRGLCCMDCLEAR command...