rpm package
opensuse/Mesa&distro=openSUSE Leap Micro 5.5
pkg:rpm/opensuse/Mesa&distro=openSUSE%20Leap%20Micro%205.5
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-45922 | — | < 22.3.5-150500.77.5.1 | 22.3.5-150500.77.5.1 | Mar 27, 2024 | glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation violation when calling __glXGetDrawableAttribute(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server. | ||
| CVE-2023-45919 | — | < 22.3.5-150500.77.5.1 | 22.3.5-150500.77.5.1 | Mar 27, 2024 | Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server. | ||
| CVE-2023-45913 | — | < 22.3.5-150500.77.5.1 | 22.3.5-150500.77.5.1 | Mar 27, 2024 | Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disput |
- CVE-2023-45922Mar 27, 2024affected < 22.3.5-150500.77.5.1fixed 22.3.5-150500.77.5.1
glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation violation when calling __glXGetDrawableAttribute(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server.
- CVE-2023-45919Mar 27, 2024affected < 22.3.5-150500.77.5.1fixed 22.3.5-150500.77.5.1
Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server.
- CVE-2023-45913Mar 27, 2024affected < 22.3.5-150500.77.5.1fixed 22.3.5-150500.77.5.1
Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disput