Wind River Support Network

HomeDefectsLINCD-8017
Fixed

LINCD-8017 : Security Advisory - virglrenderer - CVE-2022-0175

Created: Jan 25, 2022    Updated: Aug 27, 2022
Resolved Date: Feb 27, 2022
Found In Version: 10.20.6.0
Fix Version: 10.22.09.0
Severity: Standard
Applicable for: Wind River Linux CD
Component/s: Userspace

Description

virglrenderer: Missing initialization of res->ptr

https://bugzilla.redhat.com/show_bug.cgi?id=2039003

The issue is actually using malloc() instead of calloc().

CREATE(Triage):(User=admin) CVE-2022-0175 (https://nvd.nist.gov/vuln/detail/CVE-2022-0175)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube