Monero: Misconfiguration in build environment allows DLL preloading attack

Summary: monero-wallet-gui.exe tries to dynamically load some dynamic link librariesDLL which are not present in the applications directory, so LoadLibraryA system-call will search other directories such as Windows root and %PATH% for them. An attacker can gain arbitrary code execution if he/she...

Kubernetes Falls to Cryptomining via Machine-Learning Framework

A unique cyberattack campaign that targets Kubeflow, a machine-learning toolkit for Kubernetes, has affected large swathes of container clusters, according to Microsoft. The Kubeflow open-source project is a popular framework for running machine-learning ML tasks in Kubernetes. According to an...

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2020-41074)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in previous versions of Mozilla Firefox 77. An attacker could exploit the vulnerability to gain access to the contents of GPU memory...

CVE-2020-12407

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

Security Vulnerabilities fixed in Firefox 77 — Mozilla

NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys. When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash. Mozilla Developer Iain Ireland...

skia:api_mock_gpu_canvas: Use-of-uninitialized-value in GrShape::simplifyRect

Project: https://skia.googlesource.com/skia.git Detailed Report: https://oss-fuzz.com/testcase?key=5162098826149888 Project: skia Fuzzing Engine: libFuzzer Fuzz Target: apimockgpucanvas Job Type: libfuzzermsanskia Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash Stat...

Security Bulletin: NVIDIA Windows and Linux GPU Display drivers are have resolved several security vulnerabilities as described below.

Summary The NVIDIA Windows and Linux GPU Display drivers have resolved several ecurity vulnerabilities as described by the following CVEs: Vulnerability Details CVEID: CVE-2019-5690 DESCRIPTION: NVIDIA Windows GPU Display driver could allow a local authenticated attacker to gain elevated privileg...

Denial Of Service (DoS)

Kernel is vulnerable to denial of service DoS. The Radeon GPU drivers in the Linux kernel were missing sanity checks for the Anti Aliasing AA resolve register values which could allow a local, unprivileged user to cause a denial of service or escalate their privileges on systems using a graphics...

CVE-2019-0154

A flaw was found in Intel graphics hardware GPU where a local attacker with the ability to issue an ioctl could trigger a hardware level crash if MMIO registers were read while the graphics card was in a low-power state. This creates a denial of service situation and the GPU and connected display...

CVE-2016-7994

Memory leak in the virtiogpuresourcecreate2d function in hw/display/virtio-gpu.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service memory consumption via a large number of VIRTIOGPUCMDRESOURCECREATE2D commands...

CVE-2017-18643

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

CVE-2017-18643

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

Information disclosure

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

CVE-2017-18643

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

CVE-2020-7053

A use-after-free flaw was found in the Linux kernel’s GPU driver functionality when destroying GEM context. A local user could use this flaw to crash the system or potentially escalate their privileges. Mitigation In case of dedicated graphic card presence and i915 GPU is not being used, you can...

CVE-2018-8781

A an integer overflow vulnerability was discovered in the Linux kernel, from version 3.4 through 4.15, in the drivers/gpu/drm/udl/udlfb.c:udlfbmmap function. An attacker with access to the udldrmfb driver could exploit this to obtain full read and write permissions on kernel physical pages,...

CVE-2019-19082

A memory leak flaw was found in the Linux kernel. A system crash occurs under very specific, hard to obtain conditions, when the AMD GPU Display Engine configuration initialization handles resource cleaning when a failure occurs. The highest threat from this vulnerability is system availability...

TechPowerUp GPU-Z Code Execution Vulnerability

TechPowerUp GPU-Z is a lightweight application for managing and controlling video cards and graphics processors. A security vulnerability exists in the GPU-Z.sys file in TechPowerUp GPU-Z versions prior to 2.23.0. An attacker could exploit this vulnerability to execute Ring-0 code and elevate...

CVE-2019-7245

An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges...

CVE-2019-7245

An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges...