151 matches found
CVE-2024-46971 GPU DDK - UAF of memory in PMRUnlockSysPhysAddressesLocalMem for on-demand PMRs on PCI (LMA) systems
Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU...
CVE-2024-46971
CVE-2024-46971 affects the Imagination GPU Driver. A UAF (use-after-free) in PMRUnlockSysPhysAddressesLocalMem for on-demand PMRs on PCI (LMA) systems may allow a non-privileged local user to conduct GPU system calls that read and write freed GPU memory. The issue is described as a local impact w...
Imagination GPU DDK 安全漏洞
The Imagination GPU DDK is a graphics driver from Imagination. A security vulnerability exists in Imagination GPU DDK 24.2 RTM1 and prior versions, which originates from software installed and run as an unprivileged user may make GPU system calls to read and write freed physical memory from the G...
CVE-2024-40790
The issue was addressed with improved handling of caches. This issue is fixed in visionOS 2. An app may be able to read sensitive data from the GPU memory...
CVE-2024-40790
The issue was addressed with improved handling of caches. This issue is fixed in visionOS 2. An app may be able to read sensitive data from the GPU memory...
CVE-2024-2937 Mali GPU Kernel Driver allows improper GPU memory processing operations
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects...
ARM Bifrost GPU Kernel Driver、Valhall GPU Kernel Driver和ARM 5th Gen GPU Architecture Kernel Driver 安全漏洞
ARM Valhall GPU Kernel Driver and others are products of ARM UK.Valhall GPU Kernel Driver is a Valhall GPU Kernel Driver.ARM Bifrost GPU Kernel Driver is a GPU Kernel Driver.ARM 5th Gen The ARM Bifrost GPU Kernel Driver is a GPU kernel driver. A security vulnerability exists in the ARM Bifrost GP...
PT-2024-19848 · Qualcomm · Snapdragon +98
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption that occurs when invoking an IOCTL call for GPU memory allocation. This happens when the size parameter is greater...
Arm Warns of Actively Exploited Zero-Day Vulnerability in Mali GPU Drivers
Arm is warning of a security vulnerability impacting Mali GPU Kernel Driver that it said has been actively exploited in the wild. Tracked as CVE-2024-4610, the use-after-free issue impacts the following products - Bifrost GPU Kernel Driver all versions from r34p0 to r40p0 Valhall GPU Kernel Drive...
CVE-2024-4610 Mali GPU Kernel Driver allows improper GPU memory processing operations
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r34p0 through r40p0;...
CVE-2024-1067 Mali GPU Kernel Driver allows improper GPU memory processing operations
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. On Armv8.0 cores, there are certain combinations of the...
CVE-2024-1067 Mali GPU Kernel Driver allows improper GPU memory processing operations
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. On Armv8.0 cores, there are certain combinations of the...
CVE-2024-1395 Mali GPU Kernel Driver allows improper GPU memory processing operations
Use After Free vulnerability in Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already freed memory. This...
CVE-2023-6143 Mali GPU Kernel Driver allows improper GPU memory processing operations
Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing...
CVE-2023-5643 Mali GPU Kernel Driver allows improper GPU memory processing operations
Out-of-bounds Write vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. Depending on the configuration of the Mali GPU Kernel...
The vulnerabilities of microprogramming software in AMD, Qualcomm, and Imagination allow attackers to extract data from the local memory of GPUs.
The vulnerabilities of microprogramming software for AMD, Qualcomm, and Imagination relate to insufficient isolation of the GPU’s local memory, as well as the lack of cleanup after processes are executed on the GPU. Exploiting these vulnerabilities can allow attackers to extract data from the GPU...
Stable Channel Update for ChromeOS / ChromeOS Flex
Hello All, The Stable channel is being updated to 120.0.6099.235 Platform version: 15662.76.0 for ChromeOS devices and will be rolled out over the next few days. If you find new issues, please let us know one of the following ways: File a bug Visit our Chrome OS communities General: Chromebook He...
CVE-2023-4295
A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory...
Design/Logic Flaw
A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory...
CVE-2023-3889 Mali GPU Kernel Driver exposes sensitive data from freed memory
A local non-privileged user can make improper GPU memory processing operations. If the operations are carefully prepared, then they could be used to gain access to already freed memory...