- Description
- Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability is triggered when the X11 server sends an DRI2_BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disputed because there is no scenario in which the vulnerability was demonstrated.
- Source
- cve@mitre.org
- NVD status
- Modified
- CNA Tags
- disputed
- Products
- mesa
CVSS 3.1
- Type
- Secondary
- Base score
- 6.2
- Impact score
- 3.6
- Exploitability score
- 2.5
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-476
- Hype score
- Not currently trending
CRITICAL: Patch Mesa CVE-2023-45913/45919/45922 NOW on: ✅ #openSUSE Leap 15.3 ✅ #SUSE MicroOS 5.2 ✅ Rancher MicroOS Flaws: NULL ptr deref, buffer over-read, segfaults. Read more:👉 https://t.co/Q8twcRVcZt #Security https://t.co/7zI9eo9ZYc
@Cezar_H_Linux
18 Aug 2025
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 URGENT LINUX SECURITY UPDATE! 🚨 #SUSE has patched 3 vulnerabilities (CVE-2023-45913, CVE-2023-45919, CVE-2023-45922) in the Mesa graphics library. Read more : 👉 https://t.co/hA7edZgCJW #Security https://t.co/HWEdyje9sJ
@Cezar_H_Linux
16 Aug 2025
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mesa3d:mesa:23.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "BB4E18DD-7D05-4817-9F53-B83668D37872",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]