VYPR

rpm package

opensuse/virglrenderer&distro=openSUSE Leap 15.3

pkg:rpm/opensuse/virglrenderer&distro=openSUSE%20Leap%2015.3

Vulnerabilities (2)

  • CVE-2022-0175Aug 26, 2022
    affected < 0.6.0-4.6.1fixed 0.6.0-4.6.1

    A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host,

  • CVE-2022-0135Aug 25, 2022
    affected < 0.6.0-4.9.1fixed 0.6.0-4.9.1

    An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer). This flaw allows a malicious guest to create a specially crafted virgil resource and then issue a VIRTGPU_EXECBUFFER ioctl, leading to a denial of service or possible code execution.