libvirglrenderer.so is vulnerable to denial of service (DoS). When a malicious command to launch a grid is provided without a Compute Shader (CS), it leads to texture allocation failure and a null pointer dereference in vrend_renderer_resource_allocated_texture
.
gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340
gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340/diffs?commit_id=572a36879701598fa727f50313508be99865b58f
gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340/diffs?commit_id=725e12beba4a41934f0ab62d399b5d4de2d13190
lists.debian.org/debian-lts-announce/2022/12/msg00017.html