<html> <head> <base href="https://bugs.freedesktop.org/" /> </head> <body><table border="1" cellspacing="0" cellpadding="8"> <tr> <th>Bug ID</th> <td><a class="bz_bug_link bz_status_NEW " title="NEW - Planetary Anihilation: Titans display content of other processes buffers" href="https://bugs.freedesktop.org/show_bug.cgi?id=91889">91889</a> </td> </tr> <tr> <th>Summary</th> <td>Planetary Anihilation: Titans display content of other processes buffers </td> </tr> <tr> <th>Product</th> <td>Mesa </td> </tr> <tr> <th>Version</th> <td>git </td> </tr> <tr> <th>Hardware</th> <td>x86-64 (AMD64) </td> </tr> <tr> <th>OS</th> <td>Linux (All) </td> </tr> <tr> <th>Status</th> <td>NEW </td> </tr> <tr> <th>Severity</th> <td>blocker </td> </tr> <tr> <th>Priority</th> <td>medium </td> </tr> <tr> <th>Component</th> <td>Mesa core </td> </tr> <tr> <th>Assignee</th> <td>mesa-dev@lists.freedesktop.org </td> </tr> <tr> <th>Reporter</th> <td>sobkas@gmail.com </td> </tr> <tr> <th>QA Contact</th> <td>mesa-dev@lists.freedesktop.org </td> </tr></table> <p> <div> <pre>Planetary Anihilation: Titans display content of other processes buffers. This is a very serious bug, that can cause big problems. Mesa for some reason allows process to grab random data from graphic memory and display it. Including passwords, private emails and so on. This turns Mesa and PA:T into potential leaker of personal data. <a class="bz_bug_link bz_status_NEW " title="NEW - Massive memory corruption in Planetary Annihilation Alpha" href="show_bug.cgi?id=65968">Bug #65968</a> shows same corruption, but it doesn't highlight potential security problems. I will produce an apitrace of PA:T.</pre> </div> </p> <hr> <span>You are receiving this mail because:</span> <ul> <li>You are the QA Contact for the bug.</li> <li>You are the assignee for the bug.</li> </ul> </body> </html>