It was discovered that virglrenderer incorrectly handled memory. An attacker inside a guest could use this issue to cause virglrenderer to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2022-0135)
It was discovered that virglrenderer incorrectly initialized memory. An attacker inside a guest could possibly use this issue to obtain sensitive host information. (CVE-2022-0175)
{ "binaries": [ { "binary_name": "libvirglrenderer-dev", "binary_version": "0.8.2-1ubuntu1.1" }, { "binary_name": "libvirglrenderer1", "binary_version": "0.8.2-1ubuntu1.1" }, { "binary_name": "libvirglrenderer1-dbgsym", "binary_version": "0.8.2-1ubuntu1.1" }, { "binary_name": "virgl-server", "binary_version": "0.8.2-1ubuntu1.1" }, { "binary_name": "virgl-server-dbgsym", "binary_version": "0.8.2-1ubuntu1.1" } ], "availability": "No subscription required" }