Total vulnerabilities in the database
In the Linux kernel, the following vulnerability has been resolved:
drm/vmwgfx: Fix invalid reads in fence signaled events
Correctly set the length of the drm_event to the size of the structure that's actually used.
The length of the drm_event was set to the parent structure instead of to the drm_vmw_event_fence which is supposed to be read. drm_read uses the length parameter to copy the event to the user space thus resuling in oob reads.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 6.9-rc3 | 6.9-rc3.x |
| linux / linux_kernel | 6.9-rc4 | 6.9-rc4.x |
| linux / linux_kernel | 6.9-rc1 | 6.9-rc1.x |
| linux / linux_kernel | 6.9-rc2 | 6.9-rc2.x |
| linux / linux_kernel | 6.7 | 6.8.10 |
| linux / linux_kernel | 6.2 | 6.6.31 |
| linux / linux_kernel | 4.20 | 5.4.276 |
| linux / linux_kernel | 5.5 | 5.10.217 |
| linux / linux_kernel | 5.16 | 6.1.91 |
| linux / linux_kernel | 5.11 | 5.15.159 |
| linux / linux_kernel | 3.4 | 4.19.314 |
| linux / linux_kernel | 6.9-rc6 | 6.9-rc6.x |
| linux / linux_kernel | 6.9-rc5 | 6.9-rc5.x |
| debian / debian_linux | 10.0 | 10.0.x |