CVE-2017-18643

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

CVE-2017-18643

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

Information disclosure

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

CVE-2017-18643

An issue was discovered on Samsung mobile devices with M6.x and N7.x software. There is information disclosure of the kbasecontext address of a GPU memory node. The Samsung ID is SVE-2017-8907 December 2017...

CVE-2020-7053

A use-after-free flaw was found in the Linux kernel’s GPU driver functionality when destroying GEM context. A local user could use this flaw to crash the system or potentially escalate their privileges. Mitigation In case of dedicated graphic card presence and i915 GPU is not being used, you can...

CVE-2018-8781

A an integer overflow vulnerability was discovered in the Linux kernel, from version 3.4 through 4.15, in the drivers/gpu/drm/udl/udlfb.c:udlfbmmap function. An attacker with access to the udldrmfb driver could exploit this to obtain full read and write permissions on kernel physical pages,...

CVE-2019-19082

A memory leak flaw was found in the Linux kernel. A system crash occurs under very specific, hard to obtain conditions, when the AMD GPU Display Engine configuration initialization handles resource cleaning when a failure occurs. The highest threat from this vulnerability is system availability...

TechPowerUp GPU-Z Code Execution Vulnerability

TechPowerUp GPU-Z is a lightweight application for managing and controlling video cards and graphics processors. A security vulnerability exists in the GPU-Z.sys file in TechPowerUp GPU-Z versions prior to 2.23.0. An attacker could exploit this vulnerability to execute Ring-0 code and elevate...

CVE-2019-7245

An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges...

CVE-2019-7245

An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges...

Privilege escalation

An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges...

CVE-2019-7245

An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges...

CVE-2019-7245

Summary: TechPowerUp GPU-Z’s GPU-Z.sys driver prior to 2.23.0 exposes a wrmsr instruction via an IOCTL, with improper MSR filtering. This allows arbitrary MSR writes and can lead to Ring-0 code execution and privilege escalation. Impact: high (privilege escalation, potential full control). Affect...

NVIDIA D3D10 Driver nvwgf2umx_cfg.dll nvwg FTOI code execution vulnerability

Summary An exploitable code execution vulnerability exists in the nvwg functionality of NVIDIA Corporation NVIDIA D3D10 driver nvwgf2umxcfg.dll, version 442.50 - 26.21.14.4250. A specially crafted shader could allow an adversary to execute remote code. An attacker can use this vulnerability to...

CVE-2019-20600

An issue was discovered on Samsung mobile devices with O8.0 and P9.0 Exynos8890 chipsets software. A use-after-free occurs in the MALI GPU driver. The Samsung ID is SVE-2019-13921-1 May 2019...

CVE-2019-20600

An issue was discovered on Samsung mobile devices with O8.0 and P9.0 Exynos8890 chipsets software. A use-after-free occurs in the MALI GPU driver. The Samsung ID is SVE-2019-13921-1 May 2019...

Double free

An issue was discovered on Samsung mobile devices with O8.0 and P9.0 Exynos8890 chipsets software. A use-after-free occurs in the MALI GPU driver. The Samsung ID is SVE-2019-13921-1 May 2019...

CVE-2019-20577

An issue was discovered on Samsung mobile devices with P9.0 Exynos chipsets software. The MALI GPU Driver allows a kernel panic. The Samsung ID is SVE-2019-14372 August 2019...

CVE-2019-20577

An issue was discovered on Samsung mobile devices with P9.0 Exynos chipsets software. The MALI GPU Driver allows a kernel panic. The Samsung ID is SVE-2019-14372 August 2019...

Code injection

An issue was discovered on Samsung mobile devices with P9.0 Exynos chipsets software. The MALI GPU Driver allows a kernel panic. The Samsung ID is SVE-2019-14372 August 2019...