Full Disclosure mailing list archives

Null pointer deference in freedesktop mesa

From: Meng Ruijie <ruijie_meng () u nus edu>
Date: Sat, 20 Jan 2024 03:46:53 +0000

[Vulnerability description]
freedesktop Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function 
dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an 
DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3.

[VulnerabilityType Other]
null pointer deference

[Vendor of Product]
freedesktop

[Affected Product Code Base]
Mesa - 23.0.4

[Reference]
https://gitlab.freedesktop.org/mesa/mesa/-/issues/9856

[CVE Reference]
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2023-45913 to this 
vulnerability.
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/

Current thread:

Null pointer deference in freedesktop mesa Meng Ruijie (Jan 26)