Lucene search
K

9780 matches found

Prion
Prion
added 2023/06/02 12:15 a.m.19 views

Design/Logic Flaw

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p0, and...

1.7CVSS5.6AI score0.00182EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2023/06/02 12:0 a.m.42 views

CVE-2023-28469

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0...

5.8AI score0.00182EPSS
Exploits0References1
CVE
CVE
added 2023/06/02 12:0 a.m.108 views

CVE-2023-28469

The CVE-2023-28469 issue is a use-after-free in the Arm Mali GPU Kernel Driver. A non-privileged user could perform improper GPU processing to access freed memory, affecting Valhall r29p0–r42p0 (before r43p0) and Arm's GPU Architecture Gen5 r41p0–r42p0 (before r43p0). Mitigation: upgrade to versi...

5.5CVSS5.6AI score0.00182EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2023/06/02 12:0 a.m.7 views

CVE-2023-28469

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0...

5.6AI score0.00182EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/01 12:0 a.m.8 views

CVE-2023-28147

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p0, and...

7.3AI score0.00182EPSS
Exploits0References1
CVE
CVE
added 2023/06/01 12:0 a.m.132 views

CVE-2023-28147

CVE-2023-28147: Arm Mali GPU Kernel Driver contains a use-after-free in improper GPU processing operations, allowing a non-privileged user to access freed memory. Affected: Midgard (r29p0–r32p0), Bifrost (r17p0–r42p0 before r43p0), Valhall (r19p0–r42p0 before r43p0), and Arm Gen5 (r41p0–r42p0 bef...

5.5CVSS5.6AI score0.00182EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2023/06/01 12:0 a.m.34 views

CVE-2023-28147

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p0, and...

5.8AI score0.00182EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2023/05/31 12:0 a.m.893 views

Qualcomm Adreno/KGSL Data Leakage

Qualcomm Adreno/KGSL: pages can be freed to page pool while having GPU references on !CONFIGQCOMKGSLUSESHMEM Tested on a Pixel 4 again with a slightly outdated version of KGSL. I ordered a Pixel 5a but don't have it yet... On KGSL builds where CONFIGQCOMKGSLUSESHMEM is not set or on older KGSL...

8.4CVSS7.1AI score0.0018EPSS
Exploits2
0day.today
0day.today
added 2023/05/31 12:0 a.m.429 views

Qualcomm Adreno/KGSL Data Leakage Exploit

On Qualcomm Adreno/KGSL builds where CONFIGQCOMKGSLUSESHMEM is not set or on older KGSL versions without CONFIGQCOMKGSLUSESHMEM, KGSL allocates GPU-shared memory from its own page pool. Pages from this pool are inserted into VMAs that don't have any weird flags like VMPFNMAP set, which means...

8.4CVSS7.9AI score0.0018EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2023/05/30 12:0 a.m.28 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6124-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6124-1 advisory. Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests,...

7.8CVSS7.4AI score0.12966EPSS
Exploits7References7
OpenVAS
OpenVAS
added 2023/05/23 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-6096-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.71737EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2023/05/22 7:58 p.m.73 views

USN-6096-1: Linux kernel vulnerabilities

It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread. A local attacker could possibly use this to expose sensitive information. CVE-2022-27672 Ziming Zhang discovered that the VMware Virtual GPU DR...

7.8CVSS7.4AI score0.71737EPSS
Exploits3
OpenVAS
OpenVAS
added 2023/05/20 12:0 a.m.9 views

Fedora: Security Advisory for kitty (FEDORA-2023-0418511dfe)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2023/05/19 1:25 a.m.15 views

[SECURITY] Fedora 37 Update: kitty-0.26.5-5.fc37

Offloads rendering to the GPU for lower system load and buttery smooth scrolling. Uses threaded rendering to minimize input latency. - Supports all modern terminal features: graphics images, unicode, true-col or, OpenType ligatures, mouse protocol, focus tracking, bracketed paste and several new...

7.5AI score
Exploits0
Fedora
Fedora
added 2023/05/19 1:17 a.m.23 views

[SECURITY] Fedora 38 Update: kitty-0.28.1-4.fc38

Offloads rendering to the GPU for lower system load and buttery smooth scrolling. Uses threaded rendering to minimize input latency. - Supports all modern terminal features: graphics images, unicode, true-col or, OpenType ligatures, mouse protocol, focus tracking, bracketed paste and several new...

7.5AI score
Exploits0
OpenVAS
OpenVAS
added 2023/05/19 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-6089-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.00252EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2023/05/18 8:42 p.m.92 views

USN-6091-1: Linux kernel vulnerabilities

It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread. A local attacker could possibly use this to expose sensitive information. CVE-2022-27672 Ziming Zhang discovered that the VMware Virtual GPU DR...

7.8CVSS7.4AI score0.71737EPSS
Exploits3
OSV
OSV
added 2023/05/16 1:55 p.m.3 views

USN-6079-1 linux, linux-aws, linux-azure, linux-azure-5.19, linux-kvm, linux-lowlatency, linux-raspi vulnerabilities

It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread. A local attacker could possibly use this to expose sensitive information. CVE-2022-27672 Ziming Zhang discovered that the VMware Virtual GPU DR...

7.8CVSS7.2AI score0.71737EPSS
Exploits3References26
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.1 views

kernel: virtio-gpu: fix a missing check to avoid NULL dereference

In the Linux kernel, the following vulnerability has been resolved: virtio-gpu: fix a missing check to avoid NULL dereference 'cacheent' could be set NULL inside virtiogpucmdgetcapset and it will lead to a NULL dereference by a lately use of it i.e., ptr = cacheent-capscache. Fix it with a NULL...

5.5CVSS6.3AI score0.00203EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.8 views

kernel: drm/i915/reset: Fix error_state_read ptr + offset use

In the Linux kernel, the following vulnerability has been resolved: drm/i915/reset: Fix errorstateread ptr + offset use Fix our pointer offset usage in errorstateread when there is no i915gpucoredump but buf offset is non-zero. This fixes a kernel page fault can happen when multiple tests are...

5.5CVSS6.3AI score0.00259EPSS
Exploits0References5
Rows per page
Query Builder