A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host, possibly leading to information disclosure.
The product does not initialize a critical resource.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Virglrenderer | Virglrenderer_project | 0.9.0 (including) | 0.9.0 (including) |
Virglrenderer | Virglrenderer_project | 0.9.1 (including) | 0.9.1 (including) |