CVE-2017-5957

Name of the Vulnerable Software and Affected Versions virglrenderer versions before 926b9b3460a48f6454d8bbe9e44313d86a65447f

Description The issue is a stack-based buffer overflow in the vrend decode set framebuffer state function, located in vrend decode.c, which can cause a denial of service (application crash). This is achieved by exploiting the nr cbufs argument. The vulnerability is exploited by local guest users.

Recommendations For virglrenderer versions before 926b9b3460a48f6454d8bbe9e44313d86a65447f, update to a version after 926b9b3460a48f6454d8bbe9e44313d86a65447f to resolve the issue. As a temporary workaround, consider restricting access to the vrend decode set framebuffer state function to minimize the risk of exploitation. Avoid using the nr cbufs argument in the affected function until the issue is resolved.