Lucene search
K

155 matches found

OSV
OSV
added 2022/12/16 9:6 p.m.7 views

SUSE-SU-2022:4516-1 Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005993 fixes several issues. The following security issues were fixed: - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation bsc1205128. - CVE-2022-4378: Fixed stack overflow in doprocdointvec bsc1206207. - CVE-2022-4139: Fixed an issue...

8.8CVSS7.1AI score0.21314EPSS
Exploits2References15
Vulnrichment
Vulnrichment
added 2022/11/08 12:0 a.m.8 views

CVE-2022-41757

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to obtain write access to read-only memory, or obtain access to already freed memory. This affects Valhall r29p0 through r38p1 before r38p2, and r39p0 before r40p0...

8.6AI score0.00678EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/03/29 9:13 a.m.8 views

kernel: possible privileges escalation due to missing TLB flush

A random memory access flaw was found in the Linux kernel’s GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system...

7.8CVSS7.2AI score0.00379EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/02/22 9:17 a.m.5 views

kernel: possible privileges escalation due to missing TLB flush

A random memory access flaw was found in the Linux kernel’s GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system...

7.8CVSS7.2AI score0.00379EPSS
Exploits0References5
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.27 views

Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability

Arm Mali Graphics Processing Unit GPU kernel driver contains a use-after-free vulnerability that may allow a non-privileged user to make improper operations on GPU memory to gain root privilege, and/or disclose information...

9CVSS8.3AI score0.12084EPSS
In wildExploits2
CNNVD
CNNVD
added 2021/02/01 12:0 a.m.7 views

Qualcomm Graphics Access Control Error Vulnerability

Qualcomm Graphics is a Qualcomm graphics support firmware for use on processors. A security vulnerability exists in Qualcomm Graphics that stems from the use of mmap, where the kgsl driver has a special offset value that can be supplied to map the GPU memstore to user space...

7.8CVSS7.1AI score0.00182EPSS
Exploits0References3
Veracode
Veracode
added 2020/08/06 9:32 p.m.20 views

Information Leak

Mozilla Developer Nicolas Silva is vulnerable to information leak. It is found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content...

6.5CVSS2.1AI score0.00974EPSS
Exploits0References2Affected Software5
Cvelist
Cvelist
added 2020/07/09 2:54 p.m.30 views

CVE-2020-12407

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

6.8AI score0.00974EPSS
Exploits0References2
CVE
CVE
added 2020/07/09 2:54 p.m.143 views

CVE-2020-12407

CVE-2020-12407 affects Mozilla Firefox before 77. When using WebRender, under certain conditions Firefox could leak arbitrary GPU memory to the visible screen, exposing memory contents to the user (not to web content). Impact aligns with partial confidentiality; exploit details are not provided b...

6.5CVSS6.6AI score0.00974EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2020/07/09 2:54 p.m.55 views

CVE-2020-12407

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

6.5CVSS6.9AI score0.00974EPSS
Exploits0
CNVD
CNVD
added 2020/06/04 12:0 a.m.4 views

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2020-41074)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in previous versions of Mozilla Firefox 77. An attacker could exploit the vulnerability to gain access to the contents of GPU memory...

6.5CVSS8.7AI score0.00974EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/06/02 12:0 a.m.23 views

CVE-2020-12407

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

6.5CVSS7AI score0.00974EPSS
Exploits0References3
Mozilla
Mozilla
added 2020/06/02 12:0 a.m.98 views

Security Vulnerabilities fixed in Firefox 77 — Mozilla

NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys. When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash. Mozilla Developer Iain Ireland...

9.3CVSS1.6AI score0.01537EPSS
Exploits1References8Affected Software1
OSV
OSV
added 2020/04/08 2:15 p.m.2 views

CVE-2017-18643

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

7.5CVSS5.8AI score0.00413EPSS
Exploits0References1
Prion
Prion
added 2020/04/08 2:15 p.m.15 views

Information disclosure

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

5CVSS7.4AI score0.00413EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/08 1:12 p.m.21 views

CVE-2017-18643

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

7.4AI score0.00413EPSS
Exploits0References1
NVD
NVD
added 2019/12/12 9:15 a.m.19 views

CVE-2019-10520

An unprivileged application can allocate GPU memory by calling memory allocation ioctl function and can exhaust all the memory which results in out of memory in Snapdragon Mobile, Snapdragon Voice & Music in QCS405, SD 210/SD 212/SD 205, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 845 / ...

5.5CVSS6.4AI score0.00172EPSS
Exploits0References1
Prion
Prion
added 2019/12/12 9:15 a.m.23 views

Design/Logic Flaw

An unprivileged application can allocate GPU memory by calling memory allocation ioctl function and can exhaust all the memory which results in out of memory in Snapdragon Mobile, Snapdragon Voice & Music in QCS405, SD 210/SD 212/SD 205, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 845 / ...

4.9CVSS6.4AI score0.00172EPSS
Exploits0References1
CVE
CVE
added 2019/12/12 8:30 a.m.52 views

CVE-2019-10520

The CVE-2019-10520 issue is a local, memory-allocator-based vulnerability described as an unprivileged app being able to allocate GPU memory via a memory allocation ioctl, potentially exhausting all memory and causing out-of-memory on Snapdragon devices (Mobile/Voice & Music) across multiple SDM/...

5.5CVSS6.3AI score0.00172EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/12/12 8:30 a.m.21 views

CVE-2019-10520

An unprivileged application can allocate GPU memory by calling memory allocation ioctl function and can exhaust all the memory which results in out of memory in Snapdragon Mobile, Snapdragon Voice & Music in QCS405, SD 210/SD 212/SD 205, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 845 / ...

6.4AI score0.00172EPSS
Exploits0References1
Rows per page
Query Builder