{"id":"CVE-2022-38096","details":"A NULL pointer dereference vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).","modified":"2026-03-14T11:51:04.381865Z","published":"2022-09-09T15:15:14.407Z","related":["ALSA-2024:1607","ALSA-2024:2394","CGA-p7gp-v57r-j5fw","SUSE-SU-2023:0747-1","SUSE-SU-2023:0749-1","SUSE-SU-2023:0749-2","SUSE-SU-2023:0762-1","SUSE-SU-2023:0767-1","SUSE-SU-2023:0768-1","SUSE-SU-2023:0770-1","SUSE-SU-2023:0774-1","SUSE-SU-2023:0778-1","SUSE-SU-2023:0779-1","SUSE-SU-2023:0780-1","SUSE-SU-2023:0852-1","SUSE-SU-2023:1608-1","SUSE-SU-2023:1609-1","SUSE-SU-2023:1710-1","SUSE-SU-2023:2646-1","SUSE-SU-2023:2809-1","SUSE-SU-2023:2871-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"},{"type":"REPORT","url":"https://bugzilla.openanolis.cn/show_bug.cgi?id=2073"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"4.20"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-38096.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}