Full Disclosure mailing list archives

Re: NULL pointer dereference in freedesktop Mesa via check_xshm()

From: Dan Cross <crossd () gmail com>
Date: Fri, 26 Jan 2024 13:56:25 -0500

On Fri, Jan 26, 2024 at 1:55 PM Meng Ruijie <ruijie_meng () u nus edu> wrote:

[Vulnerability description]
freedesktop Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function check_xshm().

[Vulnerability Type]
NULL pointer dereference

[Vendor of Product]
freedesktop

[Affected Product Code Base]
Mesa - 23.0.4

[Reference]
https://gitlab.freedesktop.org/mesa/mesa/-/issues/9859

[CVE Reference]
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2023-45931 to this 
vulnerability.


I find it very difficult to believe that every NULL pointer error in
existence is a security vulnerability.

        - Dan C.
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/

Current thread:

NULL pointer dereference in freedesktop Mesa via check_xshm() Meng Ruijie (Jan 26)
- Re: NULL pointer dereference in freedesktop Mesa via check_xshm() Dan Cross (Jan 27)