6.3 CVE-2022-36402

 

An integer overflow vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).
https://nvd.nist.gov/vuln/detail/CVE-2022-36402

Categories

CWE-118

CWE-190

References

af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.openanolis.cn/show_bug.cgi?id=2072
Issue Tracking Permissions Required Third Party Advisory

security@openanolis.org

https://bugzilla.openanolis.cn/show_bug.cgi?id=2072
Issue Tracking Permissions Required Third Party Advisory


 

CPE

cpe start end
Configuration 1
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*


REMEDIATION




EXPLOITS


Exploit-db.com

id description date
No known exploits

POC Github

Url

Other Nist (github, ...)

Url
No known exploits


CAPEC


Common Attack Pattern Enumerations and Classifications

id description severity
No entry