These security issue is low severity and is similar with the virtio-vga/virtio-gpu device. All of them can be triggered by the guest user.
Li Qiang (7): vhost-user-gpu: fix memory disclosure in virgl_cmd_get_capset_info vhost-user-gpu: fix resource leak in 'vg_resource_create_2d' vhost-user-gpu: fix memory leak in vg_resource_attach_backing vhost-user-gpu: fix memory link while calling 'vg_resource_unref' vhost-user-gpu: fix memory leak in 'virgl_cmd_resource_unref' vhost-user-gpu: fix memory leak in 'virgl_resource_attach_backing' vhost-user-gpu: fix OOB write in 'virgl_cmd_get_capset' contrib/vhost-user-gpu/vhost-user-gpu.c | 7 +++++++ contrib/vhost-user-gpu/virgl.c | 17 ++++++++++++++++- 2 files changed, 23 insertions(+), 1 deletion(-) -- 2.25.1
