CVE-2025-6573 GPU DDK - RGXFW_CTL.pui8FWScratchBuf Leak/Overwrite

Kernel software installed and running inside an untrusted/rich execution environment REE could leak information from the trusted execution environment TEE...

Linux Distros Unpatched Vulnerability : CVE-2025-38093

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: x1e80100: Add GPU cooling Unlike the CPU, the GPU does not throttle its...

drm/msm/gpu: Fix crash when throttling GPU immediately during boot

...

NVIDIA GPU Display Driver 缓冲区错误漏洞

NVIDIA GPU Display Driver is a display driver from NVIDIA Corporation. NVIDIA GPU Display Driver suffers from a buffer error vulnerability that stems from the possibility of reading invalid memory, which could lead to information disclosure...

SUSE CVE-2025-38354

In the Linux kernel, the following vulnerability has been resolved: drm/msm/gpu: Fix crash when throttling GPU immediately during boot There is a small chance that the GPU is already hot during boot. In that case, the call to ofdevfreqcoolingregister will immediately try to apply devfreq cooling,...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a crash caused by the msmdevfreqgetdevstatus function throttling the GPU immediately at startup...

Google Chrome ANGLE/GPU Input Validation Vulnerability

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an input validation vulnerability that stems from insufficient validation of untrustworthy input by ANGLE and GPU, which can be exploited by an attacker to submit a special WEB request, which can be tricke...

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an input validation vulnerability that stems from insufficient validation of untrustworthy input by ANGLE and GPU, which can be exploited by an attacker to submit a special WEB request, which can be tricke...

Vulnerability of components such as drivers, GPU, DRM, AMD, and display cores in the Linux operating system, which allows a hacker to trigger a service failure.

The vulnerability of components such as drivers, GPU, DRM, AMD, and display cores in the Linux operating system is related to synchronization errors. Exploiting this vulnerability can allow an attacker to cause service failures...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the lack of an automatic downclocking mechanism for GPUs, which could lead to hardware overheating and damag...

CVE-2025-46707

Software installed and running inside a Guest VM may override Firmware's state and gain access to the GPU...

SecONNds: Secure Outsourced Neural Network Inference on ImageNet

The widespread adoption of outsourced neural network inference presents significant privacy challenges, as sensitive user data is processed on untrusted remote servers. Secure inference offers a privacy-preserving solution, but existing frameworks suffer from high computational overhead and...

DEBIAN-CVE-2025-38041

In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: h616: Reparent GPU clock during frequency changes The H616 manual does not state that the GPU PLL supports dynamic frequency configuration, so we must take extra care when changing the frequency. Currently any...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not freeing gpumetricstable memory, which could lead to a memory leak...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the clk driver not properly re-parenting the H616 GPU clock frequency when it changes...

Dynamic Risk Assessments for Offensive Cybersecurity Agents

Foundation models are increasingly becoming better autonomous programmers, raising the prospect that they could also automate dangerous offensive cyber-operations. Current frontier model audits probe the cybersecurity risks of such agents, but most fail to account for the degrees of freedom...

CVE-2025-21479 Incorrect Authorization in Graphics

Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from unauthorized command execution by a GPU micronode during the execution of a specific command sequence, resulting in memory corruption...

VulnCheck KEV: CVE-2025-21480

Multiple Qualcomm chipsets contain an incorrect authorization vulnerability. This vulnerability allows for memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands...

TechPowerUp GPU-Z 安全漏洞

TechPowerUp GPU-Z is a lightweight application for managing and controlling video cards and graphics processors from TechPowerUp, Inc. A security vulnerability exists in TechPowerUp GPU-Z version 2.23.0 that stems from a memory leak in the sub140001880 function in the GPU-Z.sys library...