10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.036 Low
EPSS
Percentile
91.6%
DirectFB (Direct Frame Buffer) is a set of graphics APIs implemented on top of the Linux Frame Buffer (fbdev) abstraction layer.
Multiple vulnerabilities have been discovered in DirectFB. Please review the CVE identifiers referenced below for details.
Remote attackers could cause a Denial of Service condition or execute arbitrary code via the Voodoo interface.
There is no known workaround at this time.
All DirectFB users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-libs/DirectFB-1.7.5"
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Gentoo | any | all | dev-libs/directfb | < 1.7.5 | UNKNOWN |