CVE-2023-4969 GPU kernel implementations susceptible to memory leak

2024-01-1617:01:29

certcc

www.cve.org

gpu

kernel

memory leak

vulnerability

cve-2023-4969

local memory

architecture

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.7%

JSON

A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called local memory on various architectures.

CNA Affected

[
  {
    "vendor": "Khronos Group",
    "product": "OpenCL",
    "versions": [
      {
        "status": "affected",
        "version": "3.0.11",
        "lessThanOrEqual": "3.0.11",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Khronos Group",
    "product": "Vulkan",
    "versions": [
      {
        "status": "affected",
        "version": "1.3.224",
        "lessThanOrEqual": "1.3.224",
        "versionType": "custom"
      }
    ]
  }
]