Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-26	CVE-2022-0175	A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). local low complexity virglrenderer-project redhat	5.5
2020-01-27	CVE-2020-8003	Double Free vulnerability in multiple products A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service by triggering texture allocation failure, because vrend_renderer_resource_allocated_texture is not an appropriate place for a free. local low complexity virglrenderer-project debian CWE-415	5.5
2020-01-27	CVE-2020-8002	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands that attempt to launch a grid without previously providing a Compute Shader (CS). local low complexity virglrenderer-project debian CWE-476	5.5
2019-12-23	CVE-2019-18391	Out-of-bounds Write vulnerability in multiple products A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands. local low complexity virglrenderer-project redhat opensuse debian CWE-787	5.5
2019-12-23	CVE-2019-18388	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via malformed commands. local low complexity virglrenderer-project opensuse debian CWE-476	5.5
2017-03-20	CVE-2017-5956	Out-of-bounds Read vulnerability in Virglrenderer Project Virglrenderer 0.2.0/0.4.0/0.5.0 The vrend_draw_vbo function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (out-of-bounds array access and QEMU process crash) via vectors involving vertext_buffer_index. local low complexity virglrenderer-project CWE-125	5.5
2017-03-20	CVE-2016-10214	Resource Management Errors vulnerability in Virglrenderer Project Virglrenderer 0.2.0/0.4.0/0.5.0 Memory leak in the virgl_resource_attach_backing function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_ATTACH_BACKING commands. local low complexity virglrenderer-project CWE-399	6.5
2017-03-15	CVE-2017-5937	NULL Pointer Dereference vulnerability in Virglrenderer Project Virglrenderer 0.2.0/0.4.0/0.5.0 The util_format_is_pure_uint function in vrend_renderer.c in Virgil 3d project (aka virglrenderer) 0.6.0 and earlier allows local guest OS users to cause a denial of service (NULL pointer dereference) via a crafted VIRGL_CCMD_CLEAR command. local low complexity virglrenderer-project CWE-476	6.5
2017-03-15	CVE-2016-10163	Resource Management Errors vulnerability in Virglrenderer Project Virglrenderer 0.2.0/0.4.0/0.5.0 Memory leak in the vrend_renderer_context_create_internal function in vrend_decode.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (host memory consumption) by repeatedly creating a decode context. local low complexity virglrenderer-project CWE-399	6.5
2017-03-15	CVE-2017-6386	Missing Release of Resource after Effective Lifetime vulnerability in Virglrenderer Project Virglrenderer Memory leak in the vrend_create_vertex_elements_state function in vrend_renderer.c in virglrenderer allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRGL_OBJECT_VERTEX_ELEMENTS commands. local low complexity virglrenderer-project CWE-772	6.5