← voltar
CVE-2023-45913

CVE-2023-45913

CVSS 6.2 MEDIUMEPSS 0.3%CWE-476
Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disputed because there is no scenario in which the vulnerability was demonstrated.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://packetstormsecurity.com/files/176800/Mesa-23.0.4-Null-Pointer.htmlhttp://seclists.org/fulldisclosure/2024/Jan/28https://gitlab.freedesktop.org/mesa/mesa/-/issues/9856https://seclists.org/fulldisclosure/2024/Jan/71