Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host, possibly leading to information disclosure.
CVSS Information
N/A
Vulnerability Type
资源初始化缺失
Vulnerability Title
virglrenderer 安全漏洞
Vulnerability Description
virglrenderer是一款VirGL虚拟OpenGL渲染器。 virglrenderer 存在安全漏洞,来宾系统中的攻击者可以通过 VIRTIO_GPU_CMD_RESOURCE_ATTACH_BACKING 读取 virgl 的内存片段,以获取主机系统上的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A