1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
Candidate: CVE-2017-6209
PublicDate: 2017-03-15
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6209
Description:
Stack-based buffer overflow in the parse_identifier function in tgsi_text.c
in the TGSI auxiliary module in the Gallium driver in virglrenderer before
0.6.0 allows local guest OS users to cause a denial of service
(out-of-bounds array access and QEMU process crash) via vectors related to
parsing properties.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_virglrenderer:
upstream: https://cgit.freedesktop.org/virglrenderer/commit/?id=e534b51ca3c3cd25f3990589932a9ed711c59b27
upstream_virglrenderer: needs-triage
precise_virglrenderer: DNE
precise/esm_virglrenderer: DNE
trusty_virglrenderer: DNE
vivid/stable-phone-overlay_virglrenderer: DNE
vivid/ubuntu-core_virglrenderer: DNE
xenial_virglrenderer: DNE
yakkety_virglrenderer: ignored (reached end-of-life)
zesty_virglrenderer: needs-triage
devel_virglrenderer: needs-triage
|