Bug 2133451 (CVE-2022-36402) - CVE-2022-36402 kernel: vmwgfx: integer overflow in vmwgfx_execbuf.c
Summary: CVE-2022-36402 kernel: vmwgfx: integer overflow in vmwgfx_execbuf.c
Keywords:
Status: NEW
Alias: CVE-2022-36402
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 2133477 2133479 2133480 2133481 2133478
Blocks: 2126143
TreeView+ depends on / blocked
 
Reported: 2022-10-10 13:49 UTC by Mauro Matteo Cascella
Modified: 2023-07-07 08:32 UTC (History)
54 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
An integer overflow was found in the Linux kernel's vmwgfx driver. This flaw allows a local, unprivileged attacker with access to either /dev/dri/card0 or /dev/dri/rendererD128, and able to issue an ioctl() on the resulting file descriptor to crash the system, causing a denial of service.
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description Mauro Matteo Cascella 2022-10-10 13:49:03 UTC 
An integer overflow was found in the Linux kernel's vmwgfx driver. Systems making use of the vmwgfx driver are potentially affected by this flaw. Exploiting the bug would require an attacker to have access to either /dev/dri/card0 or /dev/dri/rendererD128 and be able to issue an ioctl() on the resulting file descriptor. Under certain circumstances a local unprivileged user could use this flaw to crash the system, causing a denial of service.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2022-36402
https://bugzilla.openanolis.cn/show_bug.cgi?id=2072
Comment 1 Mauro Matteo Cascella 2022-10-10 15:19:04 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2133478]
Note You need to log in before you can comment on or make changes to this bug.