Null pointer deference in freedesktop mesa
2024-1-26 23:10:50 Author: seclists.org(查看原文) 阅读量:11 收藏

fulldisclosure logo

Full Disclosure mailing list archives


From: Meng Ruijie <ruijie_meng () u nus edu>
Date: Sat, 20 Jan 2024 03:46:53 +0000

[Vulnerability description]
freedesktop Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function 
dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an 
DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3.

[VulnerabilityType Other]
null pointer deference

[Vendor of Product]
freedesktop

[Affected Product Code Base]
Mesa - 23.0.4

[Reference]
https://gitlab.freedesktop.org/mesa/mesa/-/issues/9856

[CVE Reference]
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2023-45913 to this 
vulnerability.
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/


Current thread:

  • Null pointer deference in freedesktop mesa Meng Ruijie (Jan 26)

文章来源: https://seclists.org/fulldisclosure/2024/Jan/28
如有侵权请联系:admin#unsafe.sh