Integer Overflow in vrend_create_shader Function in virglrenderer.c

Integer Overflow in vrend_create_shader Function in virglrenderer.c

CVE-2017-6355 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

Integer overflow in the vrend_create_shader function in vrend_renderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (process crash) via crafted pkt_length and offlen values, which trigger an out-of-bounds access.

Learn more about our User Device Pen Test.