9780 matches found
ARM Mali GPU Kernel Driver < r37p0 Use After Free (CVE-2022-28350)
The version of the Mali GPU Kernel Driver installed on the remote system is prior to r37p0 running on Valhall architecture. It is, therefore affected by a use-after-free error. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. Note that Ness...
ARM Mali GPU Kernel Driver < r43p0 Use After Free (CVE-2023-28469)
The version of the Mali GPU Kernel Driver installed on the remote system is prior to r43p0 running on Valhall or 5th Gen architecture. It is, therefore affected by a use-after-free error. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. Not...
ARM Mali GPU Kernel Driver < r32p0 / < r36p0 Improper Memory Access (CVE-2022-22706)
The version of the Mali GPU Kernel Driver installed on the remote system is prior to r32p0 running on Midgard architecture or prior to r36p0 running on Bifrost or Valhall architecture. It is, therefore affected by an improper memory access vulnerability. A non-privileged user can get a write acce...
ARM Mali GPU Kernel Driver < r42p0 Improper Memory Access (CVE-2022-46781)
The version of the Mali GPU Kernel Driver installed on the remote system is prior to r42p0 running on Valhall or 5th Gen architecture. It is, therefore affected by an improper memory access vulnerability. A non-privileged user can make improper GPU memory processing operations to access a limited...
ARM Mali GPU Kernel Driver < r32p0 / < r37p0 Use After Free (CVE-2022-28348)
The version of the Mali GPU Kernel Driver installed on the remote system is prior to r32p0 running on Midgard architecture or prior to r37p0 running on Bifrost or Valhall architecture. It is, therefore affected by a use-after-free error. A non-privileged user can make improper operations on GPU...
ARM Mali GPU Kernel Driver < r38p2 / < r40p0 Use After Free (CVE-2022-38181)
The version of the Mali GPU Kernel Driver installed on the remote system is prior to r38p2 or r40p0 running on Midgard, Bifrost or Valhall architecture. It is, therefore affected by a use-after-free error. A non-privileged user can make improper GPU processing operations to gain access to already...
ARM Mali GPU Kernel Driver < r29p0 / < r31p0 Use After Free (CVE-2021-28663)
The version of the Mali GPU Kernel Driver installed on the remote system is prior to r29p0 running on Bifrost or Valhall architecture or prior to r31p0 running on Midgard architecture. It is, therefore affected by a use-after-free error. vulnerability. A non-privileged user can make improper...
ARM Mali GPU Kernel Driver < r41p0 Use After Free (CVE-2022-42716)
The version of the Mali GPU Kernel Driver installed on the remote system is prior to r41p0 running on Valhall architecture. It is, therefore affected by a use-after-free error. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. Note that Ness...
Null pointer dereference in submit_lookup_cmds() in drivers/gpu/drm/msm/msm_gem_submit.c
...
CISA Adds One Known Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2021-29256 Arm Mali GPU Kernel Driver Use-After-Free Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose...
Google Releases Android Patch Update for 3 Actively Exploited Vulnerabilities
Google has released its monthly security updates for the Android operating system, addressing 46 new software vulnerabilities. Among these, three vulnerabilities have been identified as actively exploited in targeted attacks. One of the vulnerabilities tracked as CVE-2023-26083 is a memory leak...
Google Releases Android Patch Update for 3 Actively Exploited Vulnerabilities
Google has released its monthly security updates for the Android operating system, addressing 46 new software vulnerabilities. Among these, three vulnerabilities have been identified as actively exploited in targeted attacks. One of the vulnerabilities tracked as CVE-2023-26083 is a memory leak...
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information...
Update Android now! Google patches three actively exploited zero-days
In Julys update for the Android operating system OS, Google has patched 43 vulnerabilities, three of which are actively exploited zero-day vulnerabilities. The security bulletin notes that there are indications that these three vulnerabilities may be under limited, targeted exploitation. If your...
CVE-2021-46891
Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...
CVE-2021-46891
Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...
Design/Logic Flaw
Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...
CVE-2021-46891
Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...
CVE-2021-46891
CVE-2021-46891 involves Huawei HarmonyOS and EMUI with a vulnerability in the GPU module where read/write permissions are incompletely validated. This can permit bypass of access restrictions, potentially affecting confidentiality, integrity, and availability. The NVD entry notes a high-severity ...
CVE-2021-46890
Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...