CVE-2023-45913

ADVISORY - nist

Summary

Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disputed because there is no scenario in which the vulnerability was demonstrated.

EPSS Score⁠: 0.00017 (0.028)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-476⁠

NULL Pointer Dereference

Impacted images

Advisories

NIST

CREATED

2 years ago

UPDATED

5 months ago

ADVISORY IDCVE-2023-45913⁠

EXPLOITABILITY SCORE

2.5

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

6.2medium

Debian

CREATED

2 years ago

UPDATED

3 days ago

ADVISORY IDCVE-2023-45913⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

2 years ago

UPDATED

3 months ago

ADVISORY IDCVE-2023-45913⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow