rpm package
suse/Mesa&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5
pkg:rpm/suse/Mesa&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-45922 | — | < 18.3.2-14.9.1 | 18.3.2-14.9.1 | Mar 27, 2024 | glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation violation when calling __glXGetDrawableAttribute(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server. | ||
| CVE-2023-45919 | — | < 18.3.2-14.9.1 | 18.3.2-14.9.1 | Mar 27, 2024 | Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server. | ||
| CVE-2023-45913 | — | < 18.3.2-14.9.1 | 18.3.2-14.9.1 | Mar 27, 2024 | Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disput | ||
| CVE-2019-5068 | — | < 18.3.2-14.3.2 | 18.3.2-14.3.2 | Nov 5, 2019 | An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability. |
- CVE-2023-45922Mar 27, 2024affected < 18.3.2-14.9.1fixed 18.3.2-14.9.1
glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation violation when calling __glXGetDrawableAttribute(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server.
- CVE-2023-45919Mar 27, 2024affected < 18.3.2-14.9.1fixed 18.3.2-14.9.1
Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server.
- CVE-2023-45913Mar 27, 2024affected < 18.3.2-14.9.1fixed 18.3.2-14.9.1
Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disput
- CVE-2019-5068Nov 5, 2019affected < 18.3.2-14.3.2fixed 18.3.2-14.3.2
An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.