Buffer Overflow Affecting kernel-doc package, versions <0:5.14.0-284.11.1.el9_2
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-CENTOS9-KERNELDOC-3044641
- published 14 Oct 2022
- disclosed 9 Sep 2022
How to fix?
Upgrade Centos:9 kernel-doc to version 0:5.14.0-284.11.1.el9_2 or higher.
NVD Description
Note: Versions mentioned in the description apply only to the upstream kernel-doc package and not the kernel-doc package as distributed by Centos.
See How to fix? for Centos:9 relevant fixed versions and status.
An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).