303 matches found
CVE-2025-37764
CVE-2025-37764 affects the Linux kernel (drm/imagination/powervr): a vulnerability causing firmware memory leaks during firmware image processing, leading to leaks on module unload and in failure paths during module load. The fix releases memory used for firmware image processing results and dest...
CVE-2025-37764 drm/imagination: fix firmware memory leaks
In the Linux kernel, the following vulnerability has been resolved: drm/imagination: fix firmware memory leaks Free the memory used to hold the results of firmware image processing when the module is unloaded. Fix the related issue of the same memory being leaked if processing of the firmware ima...
PowerVR Patch Security Issues
A couple security issues were discovered in PowerVR during a patch review. While reviewing a preview patch for https://bugs.chromium.org/p/project-zero/issues/detail?id=2540 , I noticed some issues - most of them minor, but the following two seem like they probably have bigger security impact: F....
Imagination PowerVR GPU 安全漏洞
The Imagination PowerVR GPU is a graphics processor from Imagination, UK. A security vulnerability exists in the Imagination PowerVR GPU that stems from a code logic error that results in memory reuse after release. An attacker exploiting the vulnerability could elevate privileges...
UBUNTU-CVE-2024-53084
In the Linux kernel, the following vulnerability has been resolved: drm/imagination: Break an object reference loop When remaining resources are being cleaned up on driver close, outstanding VM mappings may result in resources being leaked, due to an object reference loop, as shown below, with ea...
CVE-2024-53084 drm/imagination: Break an object reference loop
In the Linux kernel, the following vulnerability has been resolved: drm/imagination: Break an object reference loop When remaining resources are being cleaned up on driver close, outstanding VM mappings may result in resources being leaked, due to an object reference loop, as shown below, with ea...
CVE-2024-43704 GPU DDK - PowerVR: PVRSRVAcquireProcessHandleBase can cause psProcessHandleBase reuse when PIDs are reused
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process...
CVE-2024-43704 GPU DDK - PowerVR: PVRSRVAcquireProcessHandleBase can cause psProcessHandleBase reuse when PIDs are reused
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process...
CVE-2024-43704
CVE-2024-43704 affects Imagination Technologies PowerVR GPU driver. The PVRSRVAcquireProcessHandleBase() function can reuse psProcessHandleBase when PIDs are reused, allowing a non-privileged user to perform improper GPU system calls and access the graphics buffers of a parent process. This is a ...
PT-2024-30630 · Imagination Technologies · Powervr
Name of the Vulnerable Software and Affected Versions: PowerVR affected versions not specified Description: The issue allows software installed and run as a non-privileged user to conduct improper GPU system calls, potentially gaining access to the graphics buffers of a parent process. This is...
PT-2024-35548
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the drm/imagination component. The issue occurs when remaining resources are being cleaned up on driver close, and...
CVE-2024-43701 GPU DDK - PowerVR: TLB invalidate UAF of dma_buf imported into multiple GPU devices
Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU...
CVE-2024-43701 GPU DDK - PowerVR: TLB invalidate UAF of dma_buf imported into multiple GPU devices
Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU...
CVE-2024-31336
In PVRSRVBridgeRGXKickTA3D2 of serverrgxta3dbridge.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-31336
The CVE-2024-31336 entry concerns PVRSRVBridgeRGXKickTA3D2 in server_rgxta3d_bridge.c, affecting the PowerVR-GPU component. The issue is described as an arbitrary code execution caused by improper input validation, enabling local kernel privilege escalation without extra privileges or user intera...
CVE-2024-31336
In PVRSRVBridgeRGXKickTA3D2 of serverrgxta3dbridge.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
The vulnerability of the PowerVR graphics driver in the ChromeOS operating system allows a hacker to execute arbitrary code and gain elevated privileges.
The vulnerability of the PowerVR graphics processor driver in the ChromeOS operating system is related to the use of memory after it is freed. Exploiting this vulnerability allows an attacker to execute arbitrary code and increase their privileges...
The vulnerability of the DevmemIntChangeSparse() function in the PowerVR graphics driver of the ChromeOS operating system allows a hacker to execute arbitrary code and gain elevated privileges.
The vulnerability of the DevmemIntChangeSparse function in the PowerVR graphics driver of the ChromeOS operating system is related to integer overflow when processing field lengths. Exploiting this vulnerability allows an attacker to execute arbitrary code and gain elevated privileges...
Stable Channel Update for ChromeOS / ChromeOS Flex
The Stable channel is being updated to OS version: 15699.58.0 Browser version: 121.0.6167.159 for most ChromeOS devices. If you find new issues, please let us know one of the following ways 1. File a bug 2. Visit our ChromeOS communities 1. General: Chromebook Help Community 2. Beta Specific:...
The vulnerability of the MMU_UnmapPages() function in the PowerVR GPU driver for Android and ChromeOS allows a hacker to execute arbitrary code and gain elevated privileges.
The vulnerability of the MMUUnmapPages function in the PowerVR GPU driver for Android and ChromeOS systems is related to the execution of operations outside of memory buffers. Exploiting this vulnerability can allow attackers to gain increased privileges...