CVE-2016-10163

MEDIUM

virglrenderer <0.6.0 - DoS

Title source: llm

Description

Memory leak in the vrend_renderer_context_create_internal function in vrend_decode.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (host memory consumption) by repeatedly creating a decode context.

References (6)

Scores

CVSS v3 6.5
EPSS 0.0006
EPSS Percentile 17.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Classification

CWE
CWE-399
Status published

Affected Products (2)

virglrenderer_project/virglrenderer < 0.5.0
n/a/n/a

Timeline

Published Mar 15, 2017
Tracked Since Feb 18, 2026