51 matches found
The vulnerability of the DevmemIntMapPMR() function in the PowerVR GPU driver for Android and ChromeOS allows a hacker to execute arbitrary code and gain elevated privileges.
The vulnerability of the DevmemIntMapPMR function in the PowerVR GPU driver for Android and ChromeOS operating systems is related to the use of memory after it has been freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code and gain elevated privileges...
PT-2023-8651 · Google · Chrome Os
Name of the Vulnerable Software and Affected Versions: ChromeOS affected versions not specified Description: The issue is related to a driver for the PowerVR graphics processor in ChromeOS, involving the use of memory after it has been freed. This could allow an attacker to execute arbitrary code...
PT-2023-8652 · Google · Chrome Os
Name of the Vulnerable Software and Affected Versions: ChromeOS affected versions not specified Description: The issue is related to an integer overflow in the DevmemIntChangeSparse function of the PowerVR graphics driver in ChromeOS, which can be exploited to execute arbitrary code and elevate...
ASB-A-281905774
The PVRSRVBridgeGetMultiCoreInfo ioctl in the PowerVR kernel driver can return uninitialized kernel memory to user space. The contents of this memory could contain sensitive information...
CVE-2021-0945
In PMRCreate of the PowerVR kernel driver, a missing bounds check means it is possible to overwrite heap memory via PhysmemNewRamBackedPMR. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2021-0701
In PVRSRVBridgeSyncPrimOpCreate of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...
CVE-2021-0872
In PVRSRVBridgeRGXKickVRDM of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
CVE-2021-0873
In PVRSRVBridgeRGXKickRS of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
Google Android 输入验证错误漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an input validation error vulnerability that stems from a lack of size checking in the PowerVRSRVBridgeSyncPrimOpTake of the PowerVR kernel driver component means that there could be an integer...
CVE-2021-0885
In PVRSRVBridgeSyncPrimOpTake of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed f...
Google Android 输入验证错误漏洞
Google Android is a Linux-based open source operating system from Google Inc. in the United States. A security vulnerability exists in Google Android, which stems from a missing size check in the PVRSRVBridgeChangeSparseMem of the PowerVR kernel driver component means that an integer overflow...
CVE-2021-0875
In PVRSRVBridgeChangeSparseMem of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...
CVE-2021-0882
In PVRSRVBridgeRGXKickSync of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
Google Android 输入验证错误漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to an integer overflow in the PowerVRSRVBridgeRGXKickSync of the PowerVR kernel driver, which can be exploited by an attacker to escalate privileges...
ASB-A-270400229
In PVRSRVBridgePhysmemNewRamBackedLockedPMR of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction i...
ASB-A-270396792
In PVRSRVBridgeRGXKickTA3D of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
ASB-A-270395013
In PVRSRVBridgeCacheOpQueue of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
ASB-A-270399153
In PVRSRVBridgeServerSyncGetStatus of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...
ASB-A-270401914
In PVRSRVBridgeSyncPrimOpTake of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed f...
ASB-A-270400061
In PVRSRVBridgeChangeSparseMem of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...