libvirglrenderer1-0.9.1-1.3 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11499 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libvirglrenderer1-0.9.1-1.3 on GA media These are all security issues fixed in the libvirglrenderer1-0.9.1-1.3 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11499 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11499 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2016-10214/ SUSE CVE CVE-2016-10214 page https://www.suse.com/security/cve/CVE-2017-5937/ SUSE CVE CVE-2017-5937 page https://www.suse.com/security/cve/CVE-2017-5957/ SUSE CVE CVE-2017-5957 page https://www.suse.com/security/cve/CVE-2017-5993/ SUSE CVE CVE-2017-5993 page https://www.suse.com/security/cve/CVE-2017-5994/ SUSE CVE CVE-2017-5994 page https://www.suse.com/security/cve/CVE-2017-6386/ SUSE CVE CVE-2017-6386 page https://www.suse.com/security/cve/CVE-2019-18388/ SUSE CVE CVE-2019-18388 page https://www.suse.com/security/cve/CVE-2019-18389/ SUSE CVE CVE-2019-18389 page https://www.suse.com/security/cve/CVE-2019-18390/ SUSE CVE CVE-2019-18390 page https://www.suse.com/security/cve/CVE-2019-18391/ SUSE CVE CVE-2019-18391 page https://www.suse.com/security/cve/CVE-2019-18392/ SUSE CVE CVE-2019-18392 page https://www.suse.com/security/cve/CVE-2020-8002/ SUSE CVE CVE-2020-8002 page https://www.suse.com/security/cve/CVE-2020-8003/ SUSE CVE CVE-2020-8003 page openSUSE Tumbleweed libvirglrenderer1-0.9.1-1.3 virglrenderer-devel-0.9.1-1.3 virglrenderer-test-server-0.9.1-1.3 libvirglrenderer1-0.9.1-1.3 as a component of openSUSE Tumbleweed virglrenderer-devel-0.9.1-1.3 as a component of openSUSE Tumbleweed virglrenderer-test-server-0.9.1-1.3 as a component of openSUSE Tumbleweed Memory leak in the virgl_resource_attach_backing function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_ATTACH_BACKING commands. CVE-2016-10214 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-10214.html CVE-2016-10214 https://bugzilla.suse.com/1024244 SUSE Bug 1024244 The util_format_is_pure_uint function in vrend_renderer.c in Virgil 3d project (aka virglrenderer) 0.6.0 and earlier allows local guest OS users to cause a denial of service (NULL pointer dereference) via a crafted VIRGL_CCMD_CLEAR command. CVE-2017-5937 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5937.html CVE-2017-5937 https://bugzilla.suse.com/1024232 SUSE Bug 1024232 https://bugzilla.suse.com/1041089 SUSE Bug 1041089 Stack-based buffer overflow in the vrend_decode_set_framebuffer_state function in vrend_decode.c in virglrenderer before 926b9b3460a48f6454d8bbe9e44313d86a65447f, as used in Quick Emulator (QEMU), allows a local guest users to cause a denial of service (application crash) via the "nr_cbufs" argument. CVE-2017-5957 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate 3.8 AV:A/AC:M/Au:S/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5957.html CVE-2017-5957 https://bugzilla.suse.com/1024993 SUSE Bug 1024993 Memory leak in the vrend_renderer_init_blit_ctx function in vrend_blitter.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRGL_CCMD_BLIT commands. CVE-2017-5993 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5993.html CVE-2017-5993 https://bugzilla.suse.com/1025505 SUSE Bug 1025505 Heap-based buffer overflow in the vrend_create_vertex_elements_state function in vrend_renderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (out-of-bounds array access and crash) via the num_elements parameter. CVE-2017-5994 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5994.html CVE-2017-5994 https://bugzilla.suse.com/1025507 SUSE Bug 1025507 Memory leak in the vrend_create_vertex_elements_state function in vrend_renderer.c in virglrenderer allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRGL_OBJECT_VERTEX_ELEMENTS commands. CVE-2017-6386 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6386.html CVE-2017-6386 https://bugzilla.suse.com/1027376 SUSE Bug 1027376 A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via malformed commands. CVE-2019-18388 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-18388.html CVE-2019-18388 https://bugzilla.suse.com/1159479 SUSE Bug 1159479 A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-host escape and code execution, via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands. CVE-2019-18389 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-18389.html CVE-2019-18389 https://bugzilla.suse.com/1159482 SUSE Bug 1159482 An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_BLIT commands. CVE-2019-18390 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-18390.html CVE-2019-18390 https://bugzilla.suse.com/1159478 SUSE Bug 1159478 A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands. CVE-2019-18391 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-18391.html CVE-2019-18391 https://bugzilla.suse.com/1159486 SUSE Bug 1159486 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none. CVE-2019-18392 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-18392.html CVE-2019-18392 https://bugzilla.suse.com/1159454 SUSE Bug 1159454 A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands that attempt to launch a grid without previously providing a Compute Shader (CS). CVE-2020-8002 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-8002.html CVE-2020-8002 https://bugzilla.suse.com/1162519 SUSE Bug 1162519 A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service by triggering texture allocation failure, because vrend_renderer_resource_allocated_texture is not an appropriate place for a free. CVE-2020-8003 openSUSE Tumbleweed:libvirglrenderer1-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-devel-0.9.1-1.3 openSUSE Tumbleweed:virglrenderer-test-server-0.9.1-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-8003.html CVE-2020-8003 https://bugzilla.suse.com/1162521 SUSE Bug 1162521