CVE-2017-5993
Summary
| CVE | CVE-2017-5993 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2017-03-15 14:59:00 UTC |
|---|
| Updated | 2019-10-03 00:03:00 UTC |
|---|
| Description | Memory leak in the vrend_renderer_init_blit_ctx function in vrend_blitter.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRGL_CCMD_BLIT commands. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| Virglrenderer CVE-2017-5993 Denial of Service Vulnerability |
BID |
www.securityfocus.com |
Third Party Advisory, VDB Entry |
| virglrenderer: Multiple vulnerabilities (GLSA 201707-06) — Gentoo security |
GENTOO |
security.gentoo.org |
|
| [virglrenderer-devel] [ANNOUNCE] virglrenderer 0.6.0 |
MLIST |
lists.freedesktop.org |
Patch, Release Notes |
| oss-security - CVE-2017-5993 Virglrenderer: host memory leakage when initialising
blitter context |
MLIST |
www.openwall.com |
Mailing List, Patch |
| 1422438 – (CVE-2017-5993) CVE-2017-5993 Virglrenderer: host memory leakage when initialising blitter context |
CONFIRM |
bugzilla.redhat.com |
Issue Tracking, Patch |
| virglrenderer - VirGL virtual OpenGL renderer (mirrored from https://gitlab.freedesktop.org/virgl/virglrenderer) |
CONFIRM |
cgit.freedesktop.org |
Patch |
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 710490 Gentoo Linux virglrenderer Multiple Vulnerabilities (GLSA 201707-06)
