CVE-2015-5053

CVE-2015-5053 affects NVIDIA GPU graphics drivers (Linux) R346 before 346.87 and R352 before 352.41, and GRID vGPU/vSGA with R352 before 352.46. The host memory mapping path feature fails to properly restrict access to third‑party device IO memory, enabling a local attacker to gain privileges and...

CVE-2015-7865

CVE-2015-7865 details a local privilege escalation in NVIDIA graphics drivers for Windows prior to: R340<341.92, R352<354.35, and R358

CVE-2015-5053

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of...

CVE-2015-8328

CVE-2015-8328 is an unspecified vulnerability in the NVAPI support layer of NVIDIA GPU drivers on Windows (R340 < 341.92, R352 < 354.35, R358

CVE-2015-7869

Multiple integer overflows in the kernel mode driver for the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows and R304 before 304.131, R340 before 340.96, R352 before 352.63, and R358 before 358.16 on Linux allow local users to obtain sensitive...

Security Advisory - DoS Vulnerability in GPU Driver of Huawei Products

Some Huawei products have a DoS vulnerability. An attacker may trick a user into installing a malicious application and use it to input invalid parameters into the GPU driver program of the products, which can crash the system of the device. Vulnerability ID: HWPSIRT-2015-09017 This vulnerability...

Security Advisory - Local Permission Escalation Vulnerability in GPU of P7 Phones

The graphics processing unit GPU of Huawei P7 phones have a local permission escalation vulnerability.GPU does not properly validate the specific input parameters. An attacker may trick a user into installing a malicious application and use the application to read and modify product memory addres...

[SECURITY] Fedora 21 Update: libvdpau-1.1.1-2.fc21

VDPAU is the Video Decode and Presentation API for UNIX. It provides an interface to video decode acceleration and presentation hardware present in modern GPUs...

Fedora 23 : qemu-2.4.0-1.fc23 (2015-13358)

Rebased to version 2.4.0 Support for virtio-gpu, 2D only Support for virtio-based keyboard/mouse/tablet emulation x86 support for memory hot-unplug - ACPI v5.1 table support for 'virt' board CVE-2015-3209: pcnet: multi-tmd buffer overflow in the tx path bz 1230536 CVE-2015-3214: i8254: out-of-...

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure.

The vulnerability in the implementation of the GPU process for Google Chrome’s browser /browser/gpu/browsergpuchannelhostfactory.cc, content/renderer/renderthreadimpl.cc is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker, operating remotely, t...

kernel security, bug fix, and enhancement update

2.6.32-573 - security selinux: dont waste ebitmap space when importing NetLabel categories Paul Moore 1130197 - x86 Revert Add driver auto probing for x86 features v4 Prarit Bhargava 1231280 - net bridge: netfilter: dont call iptables on vlan packets if sysctl is off Florian Westphal 1236551 - ne...

chromium-browser: Use-after-free related to unexpected GPU process termination in unspecified

Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging the continued availability of a GPUChannelHost data structure during Blink shutdown,...

FreeBSD : chromium -- multiple vulnerabilities (9d732078-32c7-11e5-b263-00262d5ed8ee)

Google Chrome Releases reports : 43 security fixes in this release, including : - 446032 High CVE-2015-1271: Heap-buffer-overflow in pdfium. Credit to cloudfuzzer. - 459215 High CVE-2015-1273: Heap-buffer-overflow in pdfium. Credit to makosoft. - 461858 High CVE-2015-1274: Settings allowed...

Google Chrome GPU processing implements memory misreference vulnerability

Google Chrome is an open source WEB browser. A memory misreference vulnerability in the Google Chrome GPU processing implementation allows attackers to construct malicious WEB pages that can be tricked into being parsed by the user, which can crash the application or execute arbitrary code...

CVE-2015-1272

Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging the continued availability of a GPUChannelHost data structure during Blink shutdown,...

Design/Logic Flaw

Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging the continued availability of a GPUChannelHost data structure during Blink shutdown,...

CVE-2015-1272

Removed by vendor...

CVE-2015-1272

CVE-2015-1272 affects Google Chrome before 44.0.2403.89; a race condition in the GPU process (GPUChannelHost during Blink shutdown) could allow remote denial of service or unspecified impact. Mitigation: upgrade to Chrome 44.0.2403.89 or later (as fixed in the Debian/Chromium advisories and Chrom...

CVE-2015-1272

Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging the continued availability of a GPUChannelHost data structure during Blink shutdown,...

Google Chrome Multiple Vulnerabilities-01 (Jul 2015) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...