CVE-2020-8003
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2020-8003
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-8003.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2020-8003
- Downstream
- Related
- Published
- 2020-01-27T05:15:13Z
- Modified
- 2025-10-15T04:34:40Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A double-free vulnerability in vrendrenderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service by triggering texture allocation failure, because vrendrendererresourceallocated_texture is not an appropriate place for a free.
- References
-
- https://gitlab.freedesktop.org/virgl/virglrenderer/commit/f9b079ccc319c98499111f66bd654fc9b56cf15f?merge_request_iid=340
- https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340
- https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340/diffs?commit_id=3320973c9f2068f60cf6613c2811a8824781878a
- https://gitlab.freedesktop.org/virgl/virglrenderer/merge_requests/340/diffs?commit_id=f9b079ccc319c98499111f66bd654fc9b56cf15f
- https://lists.debian.org/debian-lts-announce/2022/12/msg00017.html
Affected packages
Git / gitlab.freedesktop.org/virgl/virglrenderer
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.freedesktop.org/virgl/virglrenderer
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
vanir_signatures
[
{
"source": "https://gitlab.freedesktop.org/virgl/virglrenderer@f9b079ccc319c98499111f66bd654fc9b56cf15f",
"deprecated": false,
"target": {
"file": "src/vrend_renderer.c",
"function": "vrend_renderer_resource_allocate_texture"
},
"digest": {
"function_hash": "262258557035024037516116225103713521013",
"length": 6225.0
},
"id": "CVE-2020-8003-e2d1ad54",
"signature_type": "Function",
"signature_version": "v1"
},
{
"source": "https://gitlab.freedesktop.org/virgl/virglrenderer@f9b079ccc319c98499111f66bd654fc9b56cf15f",
"deprecated": false,
"target": {
"file": "src/vrend_renderer.c"
},
"digest": {
"line_hashes": [
"122308476843676081585363916104622967610",
"267045664415107434376456633217690052835",
"176843155411216635676780524478487435752",
"240300121594031413653417605394050236833",
"254057007199365354938219173373558246388",
"303622757520870391731207620632351748111",
"1768644521429643704109422838465241177",
"212500535148868183591686327083464861266"
],
"threshold": 0.9
},
"id": "CVE-2020-8003-e6e32acf",
"signature_type": "Line",
"signature_version": "v1"
}
]