CVE-2022-36280: 
Linux Kernel vulnerability analysis and mitigation

An out-of-bounds(OOB) memory write vulnerability was discovered in the vmwgfx driver (CVE-2022-36280) in drivers/gpu/vmxgfx/vmxgfxkms.c in the Linux kernel. The vulnerability affects the VMware Virtual GPU DRM driver through the device file '/dev/dri/renderD128 (or Dxxx)'. The issue was discovered by Ziming Zhang from Ant Group Light-Year Security Lab and was disclosed on September 6, 2022 ([Bugzilla Report](https://bugzilla.openanolis.cn/showbug.cgi?id=2071)).

The vulnerability exists in the vmwkmscursorsnoop function where a memcpy operation is performed without proper length validation: 'memcpy(srf->snooper.image + i 64, virtual + i cmd->dma.guest.pitch, box->w * 4)'. The lack of bounds checking on the copy length can lead to out-of-bounds writes. The issue was fixed in upstream commit 4cf949c7fafe ('drm/vmwgfx: Validate the box size for the snooped cursor') included in Linux kernel version 6.2-rc1 ([Bugzilla Report](https://bugzilla.openanolis.cn/showbug.cgi?id=2071)).

This vulnerability allows a local unprivileged user with access to the VMware graphics device file to cause a denial of service condition through system crashes (Ubuntu Security, Debian Security).

The vulnerability has been fixed in multiple Linux distributions through security updates. Ubuntu has released fixes for various versions including 22.04 LTS (5.15.0-69.76), 20.04 LTS (5.4.0-144.161), and 18.04 LTS (4.15.0-208.220). Debian has addressed the issue in version 5.10.162-1 for the stable distribution (bullseye) (Ubuntu Security, Debian Security).