admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-30 18:21:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-269xx/CVE-2024-26979.json

48 lines
3.0 KiB
JSON
Raw Normal View History

Auto-Update: 2024-05-01T08:00:39.153628+00:00
2024-05-01 08:03:29 +00:00
{
"id": "CVE-2024-26979",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"published": "2024-05-01T06:15:15.227",
Auto-Update: 2024-05-01T14:00:40.467445+00:00
2024-05-01 14:03:31 +00:00
"lastModified": "2024-05-01T13:02:20.750",
Auto-Update: 2024-05-12T02:00:30.069085+00:00
2024-05-12 02:03:21 +00:00
"vulnStatus": "Undergoing Analysis",
Auto-Update: 2024-05-01T08:00:39.153628+00:00
2024-05-01 08:03:29 +00:00
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix possible null pointer derefence with invalid contexts\n\nvmw_context_cotable can return either an error or a null pointer and its\nusage sometimes went unchecked. Subsequent code would then try to access\neither a null pointer or an error value.\n\nThe invalid dereferences were only possible with malformed userspace\napps which never properly initialized the rendering contexts.\n\nCheck the results of vmw_context_cotable to fix the invalid derefs.\n\nThanks:\nziming zhang(@ezrak1e) from Ant Group Light-Year Security Lab\nwho was the first person to discover it.\nNiels De Graef who reported it and helped to track down the poc."
Auto-Update: 2024-05-05T02:00:30.239490+00:00
2024-05-05 02:03:23 +00:00
},
{
"lang": "es",
"value": "En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: drm/vmwgfx: corrige una posible desreferencia del puntero nulo con contextos no v\u00e1lidos. vmw_context_cotable puede devolver un error o un puntero nulo y, en ocasiones, su uso no se controlaba. El c\u00f3digo posterior intentar\u00eda acceder a un puntero nulo o a un valor de error. Las desreferencias no v\u00e1lidas solo fueron posibles con aplicaciones de espacio de usuario con formato incorrecto que nunca inicializaron correctamente los contextos de representaci\u00f3n. Verifique los resultados de vmw_context_cotable para corregir los derefs no v\u00e1lidos. Gracias: ziming zhang (@ezrak1e) de Ant Group Light-Year Security Lab, quien fue la primera persona en descubrirlo. Niels De Graef, quien lo inform\u00f3 y ayud\u00f3 a localizar al poc."
Auto-Update: 2024-05-01T08:00:39.153628+00:00
2024-05-01 08:03:29 +00:00
}
],
"metrics": {},
"references": [
{
"url": "https://git.kernel.org/stable/c/07c3fe923ff7eccf684fb4f8c953d0a7cc8ded73",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/517621b7060096e48e42f545fa6646fc00252eac",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/585fec7361e7850bead21fada49a7fcde2f2e791",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/899e154f9546fcae18065d74064889d08fff62c2",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/9cb3755b1e3680b720b74dbedfac889e904605c7",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/c560327d900bab968c2e1b4cd7fa2d46cd429e3d",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/ff41e0d4f3fa10d7cdd7d40f8026bea9fcc8b000",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
]
}
Reference in New Issue Copy Permalink