CVE-2019-5665

CVE-2019-5665 affects NVIDIA GPU Display Drivers (Windows and Linux) in the 3D vision component. The root cause is the stereo service failing to validate hard links when opening a file, potentially enabling code execution, denial of service, or privilege escalation. Affected products include NVID...

CVE-2019-5671

CVE-2019-5671 affects NVIDIA GeForce/Windows GPU Display Driver, specifically the kernel-mode layer (nvlddmkm.sys) DxgkDdiEscape handler. The issue is that a resource is not released after its lifetime ends, enabling a denial-of-service condition. Publicly documented details come from NVIDIA/IBM ...

CVE-2019-5671

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgkDdiEscape in which the software does not release a resource after its effective lifetime has ended, which may lead to denial of service...

CVE-2019-5665

NVIDIA Windows GPU Display driver contains a vulnerability in the 3D vision component in which the stereo service software, when opening a file, does not check for hard links. This behavior may lead to code execution, denial of service or escalation of privileges...

CVE-2019-5668

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgkDdiSubmitCommandVirtual in which the application dereferences a pointer that it expects to be valid, but is NULL, which may lead to denial of service or escalation of privileges...

CVE-2019-5669

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscape in which the software uses a sequential operation to read from or write to a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of...

CVE-2019-5670

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscape in which the software uses a sequential operation to read from or write to a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of...

CVE-2019-5666

CVE-2019-5666 affects the NVIDIA GPU Display Driver (kernel mode nvlddmkm.sys) for Windows and Linux. The issue arises in the DxgkDdiCreateContext path, where untrusted input is used to calculate or reference an array index without proper validation, enabling potential denial of service or privil...

CVE-2019-5666

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer nvlddmkm.sys create context command DDI DxgkDdiCreateContext in which the product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index...

CVE-2019-5667

Summary of CVE-2019-5667 : NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel-mode layer (nvlddmkm.sys) handler for DxgkDdiSetRootPageTable, where a pointer expected to be valid is NULL, potentially enabling code execution, denial of service, or privilege escalation. Affecte...

CVE-2019-5669

CVE-2019-5669 affects NVIDIA NVIDIA Display Driver (Windows/Linux). Root cause: in the kernel mode layer handler DxgkDdiEscape, a read/write uses an incorrect length, causing out-of-bounds memory access. Impact: potential denial of service or privilege escalation as described in vendor advisories...

CVE-2019-5670

CVE-2019-5670 affects NVIDIA GeForce Windows GPU Display Driver. A flaw in the kernel-mode DxgkDdiEscape handler uses an incorrect length when reading/writing a buffer, causing out-of-bounds access and potential local escalation of privileges, code execution, denial of service, or information dis...

CVE-2019-5668

CVE-2019-5668 refers to a vulnerability in the NVIDIA Windows GPU Display Driver’s kernel mode layer (nvlddmkm.sys), specifically the DxgkDdiSubmitCommandVirtual handler where a NULL pointer is dereferenced. The description and connected sources confirm the impact as denial of service or privileg...

Xiaomi perseus-p-oss MIX 3 integer overflow vulnerability

Xiaomi perseus-p-oss MIX 3 is a smartphone from Chinese company Xiaomi Technology Xiaomi. Xiaomi perseus-p-oss MIX 3 An integer overflow vulnerability exists in the sdeevtlogfilterwrite method of the drivers/gpu/drm/msm/sdedbg.c file in the Xiaomi perseus-p-oss MIX 3 on 2018-11-26 and earlier...

Integer overflow

The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in sdedebugfsconncmdtxwrite in drivers/gpu/drm/msm/sde/sdeconnector.c. This is exploitable for a device crash vi...

Integer overflow

The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in sdeevtlogfilterwrite in drivers/gpu/drm/msm/sdedbg.c. This is exploitable for a device crash via a syscall by...

CVE-2019-9112

The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in sdedebugfsconncmdtxwrite in drivers/gpu/drm/msm/sde/sdeconnector.c. This is exploitable for a device crash vi...

CVE-2019-9112

The CVE-2019-9112 vulnerability affects the MSM GPU driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device (through 2018-11-26). It is caused by an integer overflow due to missing checks of the count argument in _sde_debugfs_conn_cmd_tx_write within drivers/gpu/drm/msm/sde/sde_c...

CVE-2019-9111

CVE-2019-9111 affects the msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3. The vulnerability is an integer overflow in sde_evtlog_filter_write (drivers/gpu/drm/msm/sde_dbg.c) caused by missing checks of the count argument, leading to an OOPS and potential device crash vi...

CVE-2019-9112

The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in sdedebugfsconncmdtxwrite in drivers/gpu/drm/msm/sde/sdeconnector.c. This is exploitable for a device crash vi...