CVE-2023-45931
HIGHMesa 23.0.4 - NULL Pointer Dereference in check_xshm()
Title source: llmDescription
Mesa 23.0.4 was discovered to contain a NULL pointer dereference in check_xshm() for the has_error state. NOTE: this is disputed because there is no scenario in which the vulnerability was demonstrated.
References (5)
Core 5
Core References
Exploit, Vendor Advisory
https://gitlab.freedesktop.org/mesa/mesa/-/issues/9859
Mailing List, Third Party Advisory
https://seclists.org/fulldisclosure/2024/Jan/71
Mailing List
http://seclists.org/fulldisclosure/2024/Jan/59
Mailing List
http://seclists.org/fulldisclosure/2024/Jan/71
Exploit, Third Party Advisory
http://packetstormsecurity.com/files/176813/Mesa-23.0.4-Null-Pointer.html
Scores
CVSS v3
7.5
EPSS
0.0103
EPSS Percentile
59.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-476
Status
published
Products (1)
mesa3d/mesa
23.0.4
Published
Mar 27, 2024
Tracked Since
Feb 18, 2026