Severity by source
Local vector as virtio-gpu is only accessible from within a guest VM; PR:L because device node access requires group membership or equivalent low privilege.
Lifecycle Timeline
1DescriptionCVE.org
[virtio-gpu: fix overflow check when allocating 2d image]
AnalysisAI
Integer overflow in the virtio-gpu driver's 2D image allocation path of the Linux kernel exposes virtualized guest systems to potential heap corruption. The flaw resides in an insufficient overflow check performed before allocating memory for a 2D image resource in the virtio-gpu paravirtualized GPU subsystem. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires local access within a Linux guest VM running the virtio-gpu kernel driver, typically in a QEMU/KVM environment. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | With no CVSS vector, EPSS score, KEV listing, or POC data available, risk must be assessed from first principles. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | A local, low-privileged user process within a Linux guest VM opens the virtio-gpu DRM device and issues a resource-create-2d command with crafted width and height values designed to overflow the size calculation, bypassing the flawed bounds check. The resulting undersized heap allocation is then written beyond its bounds during image data population, corrupting adjacent kernel heap objects. … |
| Remediation | Apply the kernel patch addressing the overflow check in the virtio-gpu 2D image allocation path. … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
Same technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today