REDHAT-BUG-1765589: Buffer Overflow
First published: Fri Oct 25 2019(Updated: )
A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands. Upstream Issue: <a href="https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/314/diffs?commit_id=8c9cfb4e425542e96f0717189fe4658555baaf08">https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/314/diffs?commit_id=8c9cfb4e425542e96f0717189fe4658555baaf08</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| libvirglrenderer | <=0.8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/314/diffs?commit_id=8c9cfb4e425542e96f0717189fe4658555baaf08
- https://gitlab.freedesktop.org/virgl/virglrenderer/commit/2abeb1802e3c005b17a7123e382171b3fb665971
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1784712
- https://bugzilla.redhat.com/show_bug.cgi?id=1765589
Frequently Asked Questions
What is the severity of REDHAT-BUG-1765589?
The severity of REDHAT-BUG-1765589 is critical due to the potential for a denial of service caused by a heap-based buffer overflow.
How do I fix REDHAT-BUG-1765589?
To fix REDHAT-BUG-1765589, it is recommended to upgrade to virglrenderer version 0.8.1 or later.
What systems are affected by REDHAT-BUG-1765589?
REDHAT-BUG-1765589 affects virglrenderer versions up to and including 0.8.0.
Can REDHAT-BUG-1765589 be exploited remotely?
Yes, REDHAT-BUG-1765589 can potentially be exploited by guest OS users to trigger a denial of service.
What are the impacts of REDHAT-BUG-1765589?
The impact of REDHAT-BUG-1765589 is a denial of service, which can disrupt the functionality of applications relying on virglrenderer.
- agent/type
- agent/references
- agent/first-publish-date
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2019-18391
- agent/weakness
- agent/severity
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/freedesktop
- canonical/libvirglrenderer