Executive Summary

Informations
Name CVE-2017-5937 First vendor Publication 2017-03-15
Vendor Cve Last vendor Modification 2017-03-17

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Overall CVSS Score 6.5
Base Score 6.5 Environmental Score 6.5
impact SubScore 4 Temporal Score 6.5
Exploitabality Sub Score 2
 
Attack Vector Local Attack Complexity Low
Privileges Required Low User Interaction None
Scope Changed Confidentiality Impact None
Integrity Impact None Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 2.1 Attack Range Local
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The util_format_is_pure_uint function in vrend_renderer.c in Virgil 3d project (aka virglrenderer) 0.6.0 and earlier allows local guest OS users to cause a denial of service (NULL pointer dereference) via a crafted VIRGL_CCMD_CLEAR command.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5937

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-476 NULL Pointer Dereference

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1

Nessus® Vulnerability Scanner

Date Description
2017-04-03 Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-415.nasl - Type : ACT_GATHER_INFO
2017-03-23 Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-0798-1.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
BID http://www.securityfocus.com/bid/96180
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=1420246
https://cgit.freedesktop.org/virglrenderer/commit/?id=48f67f60967f963b698ec8d...
MLIST http://www.openwall.com/lists/oss-security/2017/02/09/4

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
Date Informations
2021-05-05 01:26:41
  • Multiple Updates
2021-04-22 02:17:18
  • Multiple Updates
2020-05-23 02:08:03
  • Multiple Updates
2020-05-23 01:03:02
  • Multiple Updates
2019-07-20 12:02:40
  • Multiple Updates
2017-04-04 13:20:39
  • Multiple Updates
2017-03-24 13:24:31
  • Multiple Updates
2017-03-17 17:23:30
  • Multiple Updates
2017-03-16 00:19:36
  • First insertion