UBUNTU-CVE-2021-1077

NVIDIA GPU Display Driver for Windows and Linux, R450 and R460 driver branch, contains a vulnerability where the software uses a reference count to manage a resource that is incorrectly updated, which may lead to denial of service...

USN-4911-1 linux-oem-5.10 vulnerabilities

It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attacker could use this to cause a denial of service system crash. CVE-2020-25639 Jan Beulich discovered that the Xen netback backend in the Linux kernel did not...

USN-4911-1: Linux kernel (OEM) vulnerabilities

It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attacker could use this to cause a denial of service system crash. CVE-2020-25639 Jan Beulich discovered that the Xen netback backend in the Linux kernel did not...

Cryptomining containers caught coining cryptocurrency covertly

In traditional software development, programmers code an application in one computing environment before deploying it to a similar, but often slightly different environment. This leads to bugs or errors that only show up when the software is deployed—exactly when you need them least. To solve for...

CVE-2021-28686

AsIO264.sys and AsIO232.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to trigger a stack-based buffer overflow. This could enable low-privileged users to achieve Denial of Service via a DeviceIoControl...

CVE-2021-28686

AsIO264.sys and AsIO232.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to trigger a stack-based buffer overflow. This could enable low-privileged users to achieve Denial of Service via a DeviceIoControl...

CVE-2021-28685

AsIO264.sys and AsIO232.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process and to interact with MSR registers. This cou...

The vulnerability of the implementation of the GPU-based terminal emulator protocol in GPU Kitty relates to the absence of measures to neutralize special elements. This allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the GPU-based terminal emulator’s protocol implementation is related to the lack of filename cleaning when returning error messages. Exploiting this vulnerability can allow remote attackers to gain access to confidential data, compromise its integrity, and cause service...

The vulnerability of the GPU Display Driver relates to the insecure handling of privileges, allowing an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the GPU Display Driver is related to improper access to outdated APIs in the driver nvlddmkm.sys for DxgkDdiEscape or IOCTL. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the GPU Display Driver’s driver lies in the simultaneous execution using shared resources with improper synchronization, allowing a hacker to cause service failure.

The vulnerability of the GPU Display Driver’s driver lies in the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the GPU Display Driver, related to insufficient input data validation, allows attackers to trigger a service failure.

The vulnerability of the GPU Display Driver is related to incorrect data validation for the user pointer in the handler nvlddmkm.sys for DxgkDdiEscape or IOCTL. Exploiting this vulnerability can allow an attacker to cause a service failure...

Updated kernel-linus packages fix security issues

This kernel-linus update is based on upstream 5.10.25 and fixes at least the following security issues: A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRMIOCTLNOUVEAUCHANNELALLOC. This...

PT-2021-5045 · Arm · Arm Mali Graphics Processing Unit

Name of the Vulnerable Software and Affected Versions: Arm Mali Graphics Processing Unit GPU versions Bifrost r0p0 through r29p0 before r30p0 Arm Mali Graphics Processing Unit GPU versions Valhall r19p0 through r29p0 before r30p0 Arm Mali Graphics Processing Unit GPU versions Midgard r8p0 through...

CVE-2020-11309

Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearable...

Input validation

Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearable...

CVE-2020-11309

The CVE-2020-11309 issue is a Use-After-Free in Qualcomm Adreno GPU drivers related to mapping user memory to GPU memory, caused by an improper check of referenced memory in Snapdragon GPUs. The vulnerability affects Qualcomm GPU components integrated in Snapdragon devices (Auto/Compute/Connectiv...

CVE-2020-11309

Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearable...

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (Mar 2021)

This host is missing an important security update according to Microsoft Edge Chromium-Based updates. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Fedora 33 : kernel / kernel-headers / kernel-tools (2021-a2d3ad5dda)

The remote Fedora 33 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-a2d3ad5dda advisory. - A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user...

Fedora 32 : kernel / kernel-headers / kernel-tools (2021-1db4ab0a3d)

The remote Fedora 32 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-1db4ab0a3d advisory. - A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user...