CVE-2022-0175 - OpenCVE

A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host, possibly leading to information disclosure.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Virglrenderer Project	Virglrenderer
Redhat	Enterprise Linux

Configuration 1 [-]

OR	cpe:2.3:a:virglrenderer_project:virglrenderer:0.9.0:::::::*
	cpe:2.3:a:virglrenderer_project:virglrenderer:0.9.1:::::::*

Configuration 2 [-]

cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2022-0175	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2039003	Issue Tracking Patch Third Party Advisory
https://gitlab.freedesktop.org/virgl/virglrenderer/-/commit/b05bb61f454eeb8a85164c8a31510aeb9d79129c	Patch Third Party Advisory
https://gitlab.freedesktop.org/virgl/virglrenderer/-/merge_requests/654	Patch Third Party Advisory
https://security-tracker.debian.org/tracker/CVE-2022-0175	Patch Third Party Advisory
https://security.gentoo.org/glsa/202210-05	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2022-08-26T00:00:00

Updated: 2022-10-16T00:00:00

Reserved: 2022-01-10T00:00:00

Link: CVE-2022-0175

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-08-26T18:15:08.660

Modified: 2022-11-08T03:02:15.950

Link: CVE-2022-0175

JSON object: View

Redhat Information

No data.

CWE

CWE-909

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:virglrenderer_project:virglrenderer:0.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "0F71DD71-4A3D-412A-B4B4-5EDD00424A4B", "vulnerable": true}, {"criteria": "cpe:2.3:a:virglrenderer_project:virglrenderer:0.9.1:*:*:*:*:*:*:*", "matchCriteriaId": "C035636F-B303-420F-8500-9914C9EEC8D4", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*", "matchCriteriaId": "3AA08768-75AF-4791-B229-AE938C780959", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host, possibly leading to information disclosure."}, {"lang": "es", "value": "Se encontr\u00f3 un fallo en VirGL virtual OpenGL renderer (virglrenderer). El virgl no inicializaba apropiadamente la memoria cuando asignaba un recurso de memoria respaldado por el host. Un hu\u00e9sped malicioso podr\u00eda usar este fallo para hacer un mapa del n\u00facleo del hu\u00e9sped y leer esta memoria no inicializada del anfitri\u00f3n, lo que posiblemente conllevar\u00eda a una divulgaci\u00f3n de informaci\u00f3n."}], "id": "CVE-2022-0175", "lastModified": "2022-11-08T03:02:15.950", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-08-26T18:15:08.660", "references": [{"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/security/cve/CVE-2022-0175"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2039003"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://gitlab.freedesktop.org/virgl/virglrenderer/-/commit/b05bb61f454eeb8a85164c8a31510aeb9d79129c"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://gitlab.freedesktop.org/virgl/virglrenderer/-/merge_requests/654"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://security-tracker.debian.org/tracker/CVE-2022-0175"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/202210-05"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-909"}], "source": "secalert@redhat.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-909"}], "source": "nvd@nist.gov", "type": "Secondary"}]}