CVE-2022-0175

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions virglrenderer (affected versions not specified)

Description A flaw was found in the VirGL virtual OpenGL renderer. The issue arises from improper memory initialization when allocating a host-backed memory resource. A malicious guest could exploit this flaw to read uninitialized memory from the host, potentially leading to information disclosure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-909

Related Identifiers

ALT-PU-2022-2675

ALT-PU-2024-2056

ALT-PU-2024-4825

AZL-10772

AZL-35347

CVE-2022-0175

MGASA-2022-0401

OESA-2022-1776

OPENSUSE-SU-2022:0111-1

OPENSUSE-SU-2022_0111-1

OPENSUSE-SU-2024:11770-1

SUSE-SU-2022:0110-1

SUSE-SU-2022:0111-1

SUSE-SU-2022_0110-1

SUSE-SU-2022_0111-1

USN-5309-1

Affected Products

Alt Linux

Linuxmint

Suse

Ubuntu

Virglrenderer

CVE-2022-0175

Weakness Enumeration

Related Identifiers

Affected Products

References · 33