VYPR

Virglrenderer

by Xorg

CVEs (2)

  • CVE-2017-6355MedMar 10, 2017
    risk 0.36cvss 5.5epss 0.00

    Integer overflow in the vrend_create_shader function in vrend_renderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (process crash) via crafted pkt_length and offlen values, which trigger an out-of-bounds access.

  • CVE-2022-0175Aug 26, 2022
    risk 0.00cvss epss 0.00

    A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the…