CVE-2025-25179

Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages...

CVE-2025-25179 GPU DDK - Freelist GPU VA can be remapped to another reservation/PMR to trigger GPU arbitrary write to physical memory

Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages...

CVE-2025-25179 GPU DDK - Freelist GPU VA can be remapped to another reservation/PMR to trigger GPU arbitrary write to physical memory

Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages...

CVE-2025-25179

CVE-2025-25179 is a local vulnerability in the Imagination Technologies PowerVR-GPU driver. A non-privileged user may issue improper GPU system calls that subvert GPU hardware and write to arbitrary physical memory pages. Reported base metrics indicate local access, low privileges required, and h...

VulnCheck KEV: CVE-2025-27038

Multiple Qualcomm chipsets contain a use-after-free vulnerability. This vulnerability allows for memory corruption while rendering graphics using Adreno GPU drivers in Chrome...

PT-2025-23495 · Arm · Arm Bifrost Gpu Userspace Driver +2

Name of the Vulnerable Software and Affected Versions: Arm Ltd Bifrost GPU Userspace Driver versions r18p0 through r51p0 Arm Ltd Valhall GPU Userspace Driver versions r28p0 through r54p0 Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver versions r41p0 through r54p0 Description: The issue allo...

PT-2025-23493 · Arm · Valhall Gpu Kernel Driver +1

Name of the Vulnerable Software and Affected Versions: Valhall GPU Kernel Driver versions r53p0 through r53p0 Arm 5th Gen GPU Architecture Kernel Driver versions r53p0 through r53p0 Description: The issue allows a local non-privileged user process to perform improper GPU memory processing...

ARM多款产品 资源管理错误漏洞

ARM Bifrost GPU Kernel Driver and others are a GPU kernel driver from ARM UK. A security vulnerability exists in various ARM products that stems from a post-release reuse vulnerability that could lead to accessing freed memory. The following products and versions are affected: ARM Bifrost GPU...

PT-2025-27964

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: A NULL pointer dereference issue in the v3d job update stats function has been identified. This issue occurs when a file descriptor is closed before the jobs submitted by it are...

PT-2025-23459 · Imagination Technologies +1 · Graphics Ddk +1

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue allows software installed and run as a non-privileged user to conduct improper GPU system calls, which can subvert GPU hardware to write to arbitrary physical memory pages...

PT-2025-23494 · Arm · Arm Valhall Gpu Kernel Driver +2

Name of the Vulnerable Software and Affected Versions: Arm Ltd Bifrost GPU Kernel Driver versions r44p0 through r51p0 Arm Ltd Valhall GPU Kernel Driver versions r44p0 through r54p0 Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r44p0 through r54p0 Description: The issue is a Use Afte...

The vulnerability of the NVIDIA GPU Display Driver allows a malicious individual to gain unauthorized access to modify data, expose sensitive information, or cause service failures.

The vulnerability of the NVIDIA GPU Display Driver software driver is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to data, disclose confidential information, or cause system failures...

CVE-2025-5324

A vulnerability, which was classified as problematic, was found in TechPowerUp GPU-Z 2.23.0. Affected is the function sub140001880 in the library GPU-Z.sys of the component 0x8000645C IOCTL Handler. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The...

CVE-2025-5324

A vulnerability, which was classified as problematic, was found in TechPowerUp GPU-Z 2.23.0. Affected is the function sub140001880 in the library GPU-Z.sys of the component 0x8000645C IOCTL Handler. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The...

CVE-2025-5324 TechPowerUp GPU-Z 0x8000645C IOCTL GPU-Z.sys sub_140001880 memory leak

A vulnerability, which was classified as problematic, was found in TechPowerUp GPU-Z 2.23.0. Affected is the function sub140001880 in the library GPU-Z.sys of the component 0x8000645C IOCTL Handler. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The...

CVE-2025-5324 TechPowerUp GPU-Z 0x8000645C IOCTL GPU-Z.sys sub_140001880 memory leak

A vulnerability, which was classified as problematic, was found in TechPowerUp GPU-Z 2.23.0. Affected is the function sub140001880 in the library GPU-Z.sys of the component 0x8000645C IOCTL Handler. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The...

CVE-2025-5324

CVE-2025-5324 affects TechPowerUp GPU-Z 2.23.0. The issue is in the IOCTL Handler component 0x8000645C, specifically function sub_140001880 in GPU-Z.sys, causing a memory leak. Exploitation is local and the vulnerability has been publicly disclosed. PT security advisory notes a temporary mitigati...

USN-7516-9 linux-aws vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - Block layer subsystem; - Drivers core; - Network block device driver;...

USN-7516-7: Linux kernel (AWS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - Block layer subsystem; - Drivers core; - Network block device driver;...

USN-7513-5: Linux kernel (Oracle) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - ACPI drivers;...