CVE-2020-8002

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-8002

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-8002.json

Related

DLA-3232-1

Published

2020-01-27T05:15:12Z

Modified

2024-05-14T08:12:23.852402Z

Summary

[none]

Details

A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands that attempt to launch a grid without previously providing a Compute Shader (CS).

References

https://lists.debian.org/debian-lts-announce/2022/12/msg00017.html
https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340
https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340/diffs?commit_id=572a36879701598fa727f50313508be99865b58f
https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340/diffs?commit_id=725e12beba4a41934f0ab62d399b5d4de2d13190

Affected packages

Git / gitlab.freedesktop.org/virgl/virglrenderer

Affected ranges

Type: GIT
Repo: https://gitlab.freedesktop.org/virgl/virglrenderer
Events: Introduced

0The exact introduced commit is unknown

Last affected

66c57963aaf09a1c41056bd2a001da1d51957a14

Affected versions

virglrenderer-0.*

virglrenderer-0.2.0

virglrenderer-0.4.0

virglrenderer-0.5.0

virglrenderer-0.6.0

virglrenderer-0.7.0

virglrenderer-0.8.0

virglrenderer-0.8.1