CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-45913

Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disputed because there is no scenario in which the vulnerability was demonstrated.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.5%

CVSS Severity

CVSS v3 Score 6.2

References

http://seclists.org/fulldisclosure/2024/Jan/28
https://gitlab.freedesktop.org/mesa/mesa/-/issues/9856
https://seclists.org/fulldisclosure/2024/Jan/71
http://seclists.org/fulldisclosure/2024/Jan/28
https://gitlab.freedesktop.org/mesa/mesa/-/issues/9856
https://seclists.org/fulldisclosure/2024/Jan/71

Products affected by CVE-2023-45913

Mesa3d » Mesa » Version: 23.0.4

cpe:2.3:a:mesa3d:mesa:23.0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-45913

Products

Pricing

Contact Us