CVE-2022-36402— Linux kernel 输入验证错误漏洞

There is an int overflow vulnerability in vmwgfx driver

An integer overflow vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H

对可索引资源的访问不恰当(越界错误)

Linux kernel 输入验证错误漏洞

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 存在安全漏洞，该漏洞源于vmwgfx 驱动程序中发现了一个整数溢出漏洞，攻击者利用该漏洞可以获得特权，从而导致服务拒绝。

N/A

N/A