Back to bug 2218212
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Mauro Matteo Cascella | 2023-06-28 13:11:47 UTC | Depends On | 2218215, 2218217, 2218214, 2218216 | |
| Mauro Matteo Cascella | 2023-06-28 13:13:10 UTC | Alias | ZDI-23-708, ZDI-CAN-20292 | |
| Mauro Matteo Cascella | 2023-06-28 13:21:42 UTC | Comment | 1 | updated |
| RaTasha Tillery-Smith | 2023-06-28 15:11:36 UTC | Doc Text | A double free vulnerability was found in the vmwgfx driver in the Linux kernel. The specific flaw exists within the handling of vmw_buffer_object objects. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. A local privileged user could potentially leverage this flaw to escalate privileges and execute code in the context of the kernel. | A double-free vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of vmw_buffer_object objects. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. This flaw allows a local privileged user to escalate privileges and execute code in the context of the kernel. |
| Red Hat Bugzilla | 2023-07-07 08:35:31 UTC | Assignee | security-response-team | nobody |
Back to bug 2218212