[<prev] [next>] [day] [month] [year] [list]
Message-ID: <SEYPR06MB666389DF79735AC55B01DC44C5772@SEYPR06MB6663.apcprd06.prod.outlook.com>
Date: Sat, 20 Jan 2024 03:46:53 +0000
From: Meng Ruijie <ruijie_meng@...us.edu>
To: "fulldisclosure@...lists.org" <fulldisclosure@...lists.org>
Subject: [FD] Null pointer deference in freedesktop mesa
[Vulnerability description]
freedesktop Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3.
[VulnerabilityType Other]
null pointer deference
[Vendor of Product]
freedesktop
[Affected Product Code Base]
Mesa - 23.0.4
[Reference]
https://gitlab.freedesktop.org/mesa/mesa/-/issues/9856
[CVE Reference]
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2023-45913 to this vulnerability.
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/
Powered by blists - more mailing lists