CVE-2017-6210
MEDIUMVirglrenderer < 0.5.0 - NULL Pointer Dereference
Title source: ruleDescription
The vrend_decode_reset function in vrend_decode.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (NULL pointer dereference and QEMU process crash) by destroying context 0 (zero).
References (6)
Scores
CVSS v3
6.5
EPSS
0.0007
EPSS Percentile
20.2%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Classification
CWE
CWE-476
Status
published
Affected Products (2)
virglrenderer_project/virglrenderer
< 0.5.0
n/a/n/a
Timeline
Published
Mar 15, 2017
Tracked Since
Feb 18, 2026