CVE-2023-5427

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU processing operations to gain access to already freed memory.This issue affects Bifrost...

CVE-2023-5427 Mali GPU Kernel Driver allows improper GPU processing operations

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU processing operations to gain access to already freed memory.This issue affects Bifrost...

CVE-2023-5427 Mali GPU Kernel Driver allows improper GPU processing operations

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU processing operations to gain access to already freed memory.This issue affects Bifrost...

CVE-2023-5427

CVE-2023-5427 is a Use-After-Free vulnerability in ARM Mali GPU Kernel Drivers (Bifrost r44p0–r45p0; Valhall r44p0–r45p0; Arm 5th Gen r44p0–r45p0). A local, non-privileged user can trigger improper GPU processing operations to access memory that has already been freed. The issue is documented wit...

PT-2023-8466 · Imagination Technologies · Powervr Gpu Driver

Name of the Vulnerable Software and Affected Versions: PowerVR GPU driver versions affected versions not specified Description: The issue is related to the MMU UnmapPages function of the PowerVR GPU driver in Android and ChromeOS, which is vulnerable to a buffer overflow in memory. This could all...

ARM Mali GPU Driver Resource Management Error Vulnerability

ARM Mali GPU Driver is an email driver from ARM UK. A security vulnerability exists in ARM Mali GPU Driver that stems from the presence of a memory reuse after release issue. An attacker can exploit the vulnerability to perform incorrect GPU processing operations to gain access to freed memory. T...

PT-2023-8472 · Imagination Technologies · Powervr Gpu Driver

Name of the Vulnerable Software and Affected Versions: devicemem server.c affected versions not specified Description: The issue is related to a use after free in the DevmemIntMapPMR function of devicemem server.c, which could lead to arbitrary code execution. This might result in local escalatio...

CVE-2023-5427

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU processing operations to gain access to already freed memory.This issue affects Bifrost...

PT-2023-8464 · Imagination Technologies · Powervr Gpu Driver

Name of the Vulnerable Software and Affected Versions: PowerVR GPU driver versions affected versions not specified Description: The issue is related to a race condition in the DevmemIntAcquireRemoteCtx function of the PowerVR GPU driver, which can lead to arbitrary code execution and local...

PT-2023-8468 · Unknown · Powervr Gpu Driver

Name of the Vulnerable Software and Affected Versions: PowerVR GPU driver versions affected versions not specified Description: The issue is related to a buffer overflow in the PowerVR GPU driver, specifically in the PMR ReadBytes function for Android and ChromeOS, and an out of bounds write in t...

PUB-A-300681900

In gpupixelhandlebufferlivenessupdateioctl of private/google-modules/gpu/malikbase/platform/pixel/pixelgpuslc.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User...

PT-2023-8465 · Google · Android +1

Name of the Vulnerable Software and Affected Versions: TBD affected versions not specified Description: The issue is related to a possible out of bounds write due to an integer overflow in the PMRWritePMPageList function of the PowerVR GPU driver in Android and ChromeOS operating systems. This...

USN-6503-1 linux, linux-aws, linux-laptop, linux-lowlatency, linux-oem-6.5, linux-oracle, linux-raspi, linux-starfive vulnerabilities

Yu Hao discovered that the UBI driver in the Linux kernel did not properly check for MTD with zero erasesize during device attachment. A local privileged attacker could use this to cause a denial of service system crash. CVE-2023-31085 Bien Pham discovered that the netfiler subsystem in the Linux...

NVIDIA GPU Display Driver Advisory - October 2023 - Lenovo Support US

No description provided...

kernel: drm/amdgpu: Fix call trace warning and hang when removing amdgpu device

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix call trace warning and hang when removing amdgpu device On GPUs with RAS enabled, below call trace and hang are observed when shutting down device. v2: use DRM device unplugged flag instead of shutdown flag as the...

kernel: drm/ttm: Don't leak a resource on swapout move error

A resource leak was found in the TTM Translation Table Manager memory management subsystem of the Linux kernel's DRM Direct Rendering Manager. When moving a buffer object to system memory for swapout fails, the allocated resource is not properly freed, leading to gradual memory exhaustion on...

kernel: drm/i915/gvt: fix vgpu debugfs clean in remove

A NULL pointer dereference was found in the Linux kernel Intel i915 graphics driver's virtual GPU debugfs cleanup handling. A local user with privileges to unbind the i915 driver can trigger driver removal on systems with active virtual GPU instances, causing the cleanup path to attempt removing...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed (SUSE-SU-2023:4427-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4427-1 advisory. - NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, wher...

SUSE SLED15: kernel-firmware-nvidia-gspx-G06 / etc (SUSE-SU-2023:4429-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4429-1 advisory. Security issues fixed: - CVE-2023-31022: Fixed NULL ptr deref in kernel module layer Changes in...

The vulnerability of the wksServicePlugin.dll library in NVIDIA Virtual GPU drivers allows a hacker to elevate their privileges.

The vulnerability of the wksServicePlugin.dll library driver for NVIDIA Virtual GPUs is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...