CVE-2023-45913

See a problem?

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-45913

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-45913.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-45913

Related

SUSE-SU-2024:3526-1

Withdrawn

2024-03-27T04:05:12Z

Published

2024-03-27T04:15:10Z

Modified

2024-08-07T03:02:14.152387Z

Summary

[none]

Details

Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disputed because there is no scenario in which the vulnerability was demonstrated.

References

Affected packages

Debian:11 / mesa

Package

Name: mesa
Purl: pkg:deb/debian/mesa?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

20.*

20.3.5-1

21.*

21.0.0~rc2-1

21.0.0~rc3-1

21.0.0~rc4-1

21.0.0~rc5-1

21.0.0-1

21.0.1-1

21.0.1-2

21.0.2-1

21.1.0-1

21.1.0-2

21.1.0-3

21.1.0-4

21.1.2-1

21.1.4-1

21.1.6-1

21.2.0-1

21.2.1-1

21.2.1-2

21.2.2-1

21.2.2-1+riscv64

21.2.3-1

21.2.3-2

21.2.4-1

21.2.5-1

21.2.6-1

21.3.0~rc5-1

21.3.3-1

21.3.4-1

21.3.5-1

21.3.7-1

21.3.8-1

22.*

22.0.0~rc2-1

22.0.0-1

22.0.1-1

22.0.1-2

22.0.2-1

22.0.3-1

22.0.4-1

22.0.5-1

22.1.0~rc3-1

22.1.0~rc5-1

22.1.0-1

22.1.3-1

22.1.5-1

22.2.0~rc1-1

22.2.0~rc2-1

22.2.0~rc3-1

22.2.0~rc3-1exp1

22.2.0~rc3-2

22.2.0-1

22.2.1-1

22.2.2-1

22.2.3-1

22.2.4-1

22.3.0~rc1-1

22.3.0~rc1-2

22.3.0~rc1-3

22.3.0~rc3-1

22.3.0~rc4-1

22.3.0-1

22.3.0-2

22.3.0-3

22.3.1-1

22.3.2-1

22.3.3-1

22.3.4-1

22.3.5-1

22.3.6-1

23.*

23.0.0~rc1-1

23.0.0~rc4-1

23.0.0-1

23.0.1-1

23.0.2-1

23.1.0~rc2-1

23.1.0~rc3-1

23.1.0-1

23.1.1-1

23.1.2-1

23.1.3-1

23.1.4-1

23.1.6-1

23.1.7-1

23.2.0~rc2-1

23.2.0~rc3-1

23.2.0~rc3-2

23.2.0~rc3-3

23.2.0~rc4-1

23.2.1-1

23.3.0~rc1-1

23.3.0~rc2-1

23.3.0~rc3-1

23.3.0~rc4-1

23.3.0~rc5-1

23.3.0-1

23.3.0-2

23.3.1-1

23.3.1-1+exp1

23.3.1-2

23.3.1-3

23.3.1-4

23.3.2-1

23.3.2-2

23.3.3-1

23.3.3-2

23.3.3-3

23.3.4-1

23.3.5-1

24.*

24.0.0~rc1-1

24.0.0~rc2-1

24.0.0~rc3-1

24.0.0-1

24.0.0-2

24.0.1-1

24.0.2-1

24.0.3-1

24.0.4-1

24.0.5-1

24.0.6-1

24.0.7-1

24.0.8-1

24.1.0~rc1-1

24.1.0~rc2-1

24.1.0~rc3-1

24.1.0-1

24.1.0-2

24.1.1-1

24.1.1-2

24.1.2-1

24.1.3-1

24.1.3-2

24.1.5-1

24.1.5-2

24.1.5-3

24.2.0~rc3-1

24.2.0~rc3-2

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / mesa

Package

Name: mesa
Purl: pkg:deb/debian/mesa?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

22.*

22.3.6-1+deb12u1

23.*

23.0.0~rc1-1

23.0.0~rc4-1

23.0.0-1

23.0.1-1

23.0.2-1

23.1.0~rc2-1

23.1.0~rc3-1

23.1.0-1

23.1.1-1

23.1.2-1

23.1.3-1

23.1.4-1

23.1.6-1

23.1.7-1

23.2.0~rc2-1

23.2.0~rc3-1

23.2.0~rc3-2

23.2.0~rc3-3

23.2.0~rc4-1

23.2.1-1

23.3.0~rc1-1

23.3.0~rc2-1

23.3.0~rc3-1

23.3.0~rc4-1

23.3.0~rc5-1

23.3.0-1

23.3.0-2

23.3.1-1

23.3.1-1+exp1

23.3.1-2

23.3.1-3

23.3.1-4

23.3.2-1

23.3.2-2

23.3.3-1

23.3.3-2

23.3.3-3

23.3.4-1

23.3.5-1

24.*

24.0.0~rc1-1

24.0.0~rc2-1

24.0.0~rc3-1

24.0.0-1

24.0.0-2

24.0.1-1

24.0.2-1

24.0.3-1

24.0.4-1

24.0.5-1

24.0.6-1

24.0.7-1

24.0.8-1

24.1.0~rc1-1

24.1.0~rc2-1

24.1.0~rc3-1

24.1.0-1

24.1.0-2

24.1.1-1

24.1.1-2

24.1.2-1

24.1.3-1

24.1.3-2

24.1.5-1

24.1.5-2

24.1.5-3

24.2.0~rc3-1

24.2.0~rc3-2

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / mesa

Package

Name: mesa
Purl: pkg:deb/debian/mesa?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

23.*

23.0.0~rc1-1

23.0.0~rc4-1

23.0.0-1

23.0.1-1

23.0.2-1

23.1.0~rc2-1

23.1.0~rc3-1

23.1.0-1

23.1.1-1

23.1.2-1

23.1.3-1

23.1.4-1

23.1.6-1

23.1.7-1

23.2.0~rc2-1

23.2.0~rc3-1

23.2.0~rc3-2

23.2.0~rc3-3

23.2.0~rc4-1

23.2.1-1

23.3.0~rc1-1

23.3.0~rc2-1

23.3.0~rc3-1

23.3.0~rc4-1

23.3.0~rc5-1

23.3.0-1

23.3.0-2

23.3.1-1

23.3.1-1+exp1

23.3.1-2

23.3.1-3

23.3.1-4

23.3.2-1

23.3.2-2

23.3.3-1

23.3.3-2

23.3.3-3

23.3.4-1

23.3.5-1

24.*

24.0.0~rc1-1

24.0.0~rc2-1

24.0.0~rc3-1

24.0.0-1

24.0.0-2

24.0.1-1

24.0.2-1

24.0.3-1

24.0.4-1

24.0.5-1

24.0.6-1

24.0.7-1

24.0.8-1

24.1.0~rc1-1

24.1.0~rc2-1

24.1.0~rc3-1

24.1.0-1

24.1.0-2

24.1.1-1

24.1.1-2

24.1.2-1

24.1.3-1

24.1.3-2

24.1.5-1

24.1.5-2

24.1.5-3

24.2.0~rc3-1

24.2.0~rc3-2

Ecosystem specific

{
    "urgency": "unimportant"
}